Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response
问题: 后端已设置Access-Control-Allow-Headers为*(通配符)
原因:
- ** (wildcard)**
对于没有凭据的请求(没有HTTP cookie或HTTP认证信息的请求),值“ *”仅作为特殊的通配符值。 在具有凭据的请求中,它被视为没有特殊语义的文字标头名称“ *”。 请注意,Authorization标头不能使用通配符,并且始终需要明确列出。
解决:
单独加了Authorization
Access-Control-Allow-Headers:['*','Authorization']来源:
Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response
https://blog.fullsize.cn/2022/04/11/notion/request-header-field-authorization-is-not-allowed-by-access-control-allow-headers-in-preflight-response/