站長(zhǎng)資訊網(wǎng)
        最全最豐富的資訊網(wǎng)站

        Python Flask大刀解決跨域問(wèn)題

        python視頻教程欄目為大家介紹Python Flask解決跨域問(wèn)題。

        Python Flask大刀解決跨域問(wèn)題

        系列文章目錄

        Table of Contents

        • 系列文章目錄
        • 前言
        • 使用步驟
          • 1. 引入庫(kù)
          • 2. 配置
            • 1. 使用 CORS函數(shù) 配置全局路由
            • 2. 使用 @cross_origin 來(lái)配置單行路由
          • 配置參數(shù)說(shuō)明
        • 總結(jié)
        • 參考

        前言

        我靠,又跨域了

        使用步驟

        1. 引入庫(kù)

        pip install flask-cors復(fù)制代碼

        2. 配置

        flask-cors 有兩種用法,一種為全局使用,一種對(duì)指定的路由使用

        1. 使用 CORS函數(shù) 配置全局路由

        from flask import Flask, requestfrom flask_cors import CORS  app = Flask(__name__) CORS(app, supports_credentials=True)復(fù)制代碼

        其中 CORS 提供了一些參數(shù)幫助我們定制一下操作。

        常用的我們可以配置 originsmethodsallow_headerssupports_credentials

        所有的配置項(xiàng)如下:

        :param resources:     The series of regular expression and (optionally) associated CORS     options to be applied to the given resource path.      If the argument is a dictionary, it's keys must be regular expressions,     and the values must be a dictionary of kwargs, identical to the kwargs     of this function.      If the argument is a list, it is expected to be a list of regular     expressions, for which the app-wide configured options are applied.      If the argument is a string, it is expected to be a regular expression     for which the app-wide configured options are applied.      Default : Match all and apply app-level configuration  :type resources: dict, iterable or string  :param origins:     The origin, or list of origins to allow requests from.     The origin(s) may be regular expressions, case-sensitive strings,     or else an asterisk      Default : '*' :type origins: list, string or regex  :param methods:     The method or list of methods which the allowed origins are allowed to     access for non-simple requests.      Default : [GET, HEAD, POST, OPTIONS, PUT, PATCH, DELETE] :type methods: list or string  :param expose_headers:     The header or list which are safe to expose to the API of a CORS API     specification.      Default : None :type expose_headers: list or string  :param allow_headers:     The header or list of header field names which can be used when this     resource is accessed by allowed origins. The header(s) may be regular     expressions, case-sensitive strings, or else an asterisk.      Default : '*', allow all headers :type allow_headers: list, string or regex  :param supports_credentials:     Allows users to make authenticated requests. If true, injects the     `Access-Control-Allow-Credentials` header in responses. This allows     cookies and credentials to be submitted across domains.      :note: This option cannot be used in conjuction with a '*' origin      Default : False :type supports_credentials: bool  :param max_age:     The maximum time for which this CORS request maybe cached. This value     is set as the `Access-Control-Max-Age` header.      Default : None :type max_age: timedelta, integer, string or None  :param send_wildcard: If True, and the origins parameter is `*`, a wildcard     `Access-Control-Allow-Origin` header is sent, rather than the     request's `Origin` header.      Default : False :type send_wildcard: bool  :param vary_header:     If True, the header Vary: Origin will be returned as per the W3     implementation guidelines.      Setting this header when the `Access-Control-Allow-Origin` is     dynamically generated (e.g. when there is more than one allowed     origin, and an Origin than '*' is returned) informs CDNs and other     caches that the CORS headers are dynamic, and cannot be cached.      If False, the Vary header will never be injected or altered.      Default : True :type vary_header: bool復(fù)制代碼

        2. 使用 @cross_origin 來(lái)配置單行路由

        from flask import Flask, requestfrom flask_cors import cross_origin  app = Flask(__name__)@app.route('/')@cross_origin(supports_credentials=True)def hello():     name = request.args.get("name", "World")    return f'Hello, {name}!'復(fù)制代碼

        其中 cross_originCORS 提供一些基本相同的參數(shù)。

        常用的我們可以配置 originsmethodsallow_headerssupports_credentials

        所有的配置項(xiàng)如下:

        :param origins:     The origin, or list of origins to allow requests from.     The origin(s) may be regular expressions, case-sensitive strings,     or else an asterisk      Default : '*' :type origins: list, string or regex  :param methods:     The method or list of methods which the allowed origins are allowed to     access for non-simple requests.      Default : [GET, HEAD, POST, OPTIONS, PUT, PATCH, DELETE] :type methods: list or string  :param expose_headers:     The header or list which are safe to expose to the API of a CORS API     specification.      Default : None :type expose_headers: list or string  :param allow_headers:     The header or list of header field names which can be used when this     resource is accessed by allowed origins. The header(s) may be regular     expressions, case-sensitive strings, or else an asterisk.      Default : '*', allow all headers :type allow_headers: list, string or regex  :param supports_credentials:     Allows users to make authenticated requests. If true, injects the     `Access-Control-Allow-Credentials` header in responses. This allows     cookies and credentials to be submitted across domains.      :note: This option cannot be used in conjuction with a '*' origin      Default : False :type supports_credentials: bool  :param max_age:     The maximum time for which this CORS request maybe cached. This value     is set as the `Access-Control-Max-Age` header.      Default : None :type max_age: timedelta, integer, string or None  :param send_wildcard: If True, and the origins parameter is `*`, a wildcard     `Access-Control-Allow-Origin` header is sent, rather than the     request's `Origin` header.      Default : False :type send_wildcard: bool  :param vary_header:     If True, the header Vary: Origin will be returned as per the W3     implementation guidelines.      Setting this header when the `Access-Control-Allow-Origin` is     dynamically generated (e.g. when there is more than one allowed     origin, and an Origin than '*' is returned) informs CDNs and other     caches that the CORS headers are dynamic, and cannot be cached.      If False, the Vary header will never be injected or altered.      Default : True :type vary_header: bool  :param automatic_options:     Only applies to the `cross_origin` decorator. If True, Flask-CORS will     override Flask's default OPTIONS handling to return CORS headers for     OPTIONS requests.      Default : True :type automatic_options: bool復(fù)制代碼

        配置參數(shù)說(shuō)明

        參數(shù) 類(lèi)型 Head 默認(rèn) 說(shuō)明
        resources 字典、迭代器或字符串 無(wú) 全部 配置允許跨域的路由接口
        origins 列表、字符串或正則表達(dá)式 Access-Control-Allow-Origin * 配置允許跨域訪(fǎng)問(wèn)的源
        methods 列表、字符串 Access-Control-Allow-Methods [GET, HEAD, POST, OPTIONS, PUT, PATCH, DELETE] 配置跨域支持的請(qǐng)求方式
        expose_headers 列表、字符串 Access-Control-Expose-Headers None 自定義請(qǐng)求響應(yīng)的Head信息
        allow_headers 列表、字符串或正則表達(dá)式 Access-Control-Request-Headers * 配置允許跨域的請(qǐng)求頭
        supports_credentials 布爾值 Access-Control-Allow-Credentials False 是否允許請(qǐng)求發(fā)送cookie
        max_age timedelta、整數(shù)、字符串 Access-Control-Max-Age None 預(yù)檢請(qǐng)求的有效時(shí)長(zhǎng)

        總結(jié)

        在 flask 的跨域配置中,我們可以使用 flask-cors 來(lái)進(jìn)行配置,其中 CORS 函數(shù) 用來(lái)做全局的配置, @cross_origin 來(lái)實(shí)現(xiàn)特定路由的配置。

        贊(0)
        分享到: 更多 (0)
        網(wǎng)站地圖   滬ICP備18035694號(hào)-2    滬公網(wǎng)安備31011702889846號(hào)
        主站蜘蛛池模板: 国产亚洲精品岁国产微拍精品| 久久精品国产精品国产精品污| 国产精品久久一区二区三区| 精品乱子伦一区二区三区高清免费播放| 久久99精品国产麻豆| 久久se精品一区精品二区国产| 欧美大片日韩精品| 精品福利视频一区二区三区| 亚洲第一永久AV网站久久精品男人的天堂AV | 亚洲国产一二三精品无码| 国产精品久久久久一区二区三区| 国产精品美脚玉足脚交欧美| 亚洲AV日韩精品久久久久久久| 欧美日韩精品一区二区视频 | 四虎国产精品永久地址入口| 国产精品免费一区二区三区| 亚洲综合国产精品| 国产欧美久久久精品| 国产精品成人观看视频国产| 国产成人vr精品a视频| 精品麻豆丝袜高跟鞋AV| 亚洲国产精品乱码一区二区| 亚洲性日韩精品国产一区二区 | 久久99精品国产麻豆宅宅| 国产精品内射后入合集| 亚洲精品无码久久久久| 亚洲中文字幕久久精品无码APP| 日韩熟女精品一区二区三区| 国产精品久久久久久久久久免费| 99国产精品私拍pans大尺度 | 国产福利91精品一区二区| 国产精品美女久久久久久2018| 国产精品国产三级国产av品爱网 | 精品精品国产高清a毛片| 性色精品视频网站在线观看| 国产原创精品视频| 国产精品成人在线| 久久精品国产亚洲欧美| 911亚洲精品国产自产| 99久久99久久精品国产片果冻| 国产成人精品a视频一区|