blocks|key|2103097|text|据我所知，CORS错误并不是因为SharePoint而发生的，而是因为您的浏览器。这里的问题是，您正在尝试将资源从xxx.sharepoint.com加载到本地主机(默认情况下，在CORS中从未将其添加为可接受的)。|type|unstyled|depth|inlineStyleRanges|entityRanges|data|2103098|因此，一种解决方案是使用CORS--不敏感的浏览器。这可以是：|2103099|cd+"C:\Program+Files+(x86)\Google\Chrome\Application"
chrome.exe+--disable-web-security+--user-data-dir="C:\tmp"|code-block|syntax|javascript|2103100|这段代码段使用用户数据目录"C:\tmp“启动您的Google，而没有使用"Web”(包括CORS)。|2103101|请记住，这种解决方法只适用于开发。在生产中你不应该使用本地主机..。|2103102|https://www.thepolyglotdeveloper.com/2014/08/bypass-cors-errors-testing-apis-locally/|offset|length|2103103|entityMap|0|LINK|mutability|MUTABLE|url^0|0|0|0|0|0|0|2D|0|0^^$0|@$1|2|3|4|5|6|7|X|8|@]|9|@]|A|$]]|$1|B|3|C|5|6|7|Y|8|@]|9|@]|A|$]]|$1|D|3|E|5|F|7|Z|8|@]|9|@]|A|$G|H]]|$1|I|3|J|5|6|7|10|8|@]|9|@]|A|$]]|$1|K|3|L|5|6|7|11|8|@]|9|@]|A|$]]|$1|M|3|N|5|6|7|12|8|@]|9|@$O|13|P|14|1|15]]|A|$]]|$1|Q|3|-4|5|6|7|16|8|@]|9|@]|A|$]]]|R|$S|$5|T|U|V|A|$W|N]]]]

As far as i can tell the CORS error does not occur because of SharePoint, but because of your Browser. The problem here is that you are trying to load resources from xxx.sharepoint.com to localhost (which per default is never added as accepted in CORS)

So one solution would to use a CORS-unsensitive browser. This could be the following:

<pre class="lang-sh prettyprint-override"><code>cd "C:\Program Files (x86)\Google\Chrome\Application"
chrome.exe --disable-web-security --user-data-dir="C:\tmp"
</code></pre>

This snippet starts your Google Chrome without "Web Security" (includes CORS) using the User Data Directory "C:\tmp".

Remember that this workaround only works for development. In production you should not use localhost...

<a href="https://www.thepolyglotdeveloper.com/2014/08/bypass-cors-errors-testing-apis-locally/" rel="nofollow noreferrer">https://www.thepolyglotdeveloper.com/2014/08/bypass-cors-errors-testing-apis-locally/</a>

blocks|key|2734079|text|默认情况下(在JavaScript+API中)，跨源资源共享在现代浏览器中被阻止。|type|unstyled|depth|inlineStyleRanges|entityRanges|data|2734080|为了处理来自不同领域的web应用程序中的跨域Ajax请求，生产服务器必须是CORS-启用。但是，如果您只需要为开发绕过它，就可以使用允许CORS:访问-控制-允许-起源铬扩展来启用/禁用CORS检查。|offset|length|style|BOLD|2734081|entityMap|0|LINK|mutability|MUTABLE|url|https://enable-cors.org/server_iis6.html|1|https://chrome.google.com/webstore/detail/allow-cors-access-control/lhobafahddgcelffkeicbaginigeejlf^0|0|1J|2|11|7|0|1U|I|1|0^^$0|@$1|2|3|4|5|6|7|R|8|@]|9|@]|A|$]]|$1|B|3|C|5|6|7|S|8|@$D|T|E|U|F|G]]|9|@$D|V|E|W|1|X]|$D|Y|E|Z|1|10]]|A|$]]|$1|H|3|-4|5|6|7|11|8|@]|9|@]|A|$]]]|I|$J|$5|K|L|M|A|$N|O]]|P|$5|K|L|M|A|$N|Q]]]]

Cross Origin Resource Sharing is blocked in modern browsers by default (in JavaScript APIs).

Your production server must be <a href="https://enable-cors.org/server_iis6.html" rel="nofollow noreferrer">CORS-enabled</a> in order to handle cross-domain Ajax requests in web applications from a different domain. But if you just need to bypass it for development, try using <a href="https://chrome.google.com/webstore/detail/allow-cors-access-control/lhobafahddgcelffkeicbaginigeejlf" rel="nofollow noreferrer">Allow CORS: Access-Control-Allow-Origin</a> chrome extension which let's you enable/disable CORS checking.

blocks|key|2734155|text|您正在访问的web应用程序支持CORS+(或不支持)。早期版本的SharePoint很少或根本不支持CORS。|type|unstyled|depth|inlineStyleRanges|entityRanges|data|2734156|SharePoint+2016及以上版本要求您在所有CORS呼叫中使用OAuth。这可以通过低/高信任的外接程序令牌或AAD应用程序令牌来完成。任何由OAuth识别的有效SharePoint令牌都可以工作。这是一个广泛的主题，但您可以在这里阅读外接程序身份验证-+SharePoint外接程序的授权与认证。|offset|length|2734157|在SharePoint的早期版本(2013年及之前)中，您可以使用IIS中的URL重写规则或响应头来伪造SharePoint中缺乏的CORS支持。既然它支持它，就不能伪造它，它需要身份验证。|2734158|这里有更多信息-+修正跨域ajax调用SharePoint+rest中的问题|2734159|entityMap|0|LINK|mutability|MUTABLE|url|https://learn.microsoft.com/en-us/sharepoint/dev/sp-add-ins/authorization-and-authentication-of-sharepoint-add-ins|1|https://techcommunity.microsoft.com/t5/microsoft-sharepoint-blog/fixing-issue-in-making-cross-domain-ajax-call-to-sharepoint-rest/ba-p/510001^0|0|3O|K|0|0|0|9|T|1|0^^$0|@$1|2|3|4|5|6|7|T|8|@]|9|@]|A|$]]|$1|B|3|C|5|6|7|U|8|@]|9|@$D|V|E|W|1|X]]|A|$]]|$1|F|3|G|5|6|7|Y|8|@]|9|@]|A|$]]|$1|H|3|I|5|6|7|Z|8|@]|9|@$D|10|E|11|1|12]]|A|$]]|$1|J|3|-4|5|6|7|13|8|@]|9|@]|A|$]]]|K|$L|$5|M|N|O|A|$P|Q]]|R|$5|M|N|O|A|$P|S]]]]

CORS is supported (or not) by the web application you are accessing. Previous versions of SharePoint had little or no CORS support.
SharePoint 2016 and above require you to use OAuth on all CORS calls. This can be done with a low/high trust add-in token, or an AAD application token. Any valid OAuth token recognized by SharePoint will work. This is a broad topic, but you can read up on add-in authentication here-
<a href="https://learn.microsoft.com/en-us/sharepoint/dev/sp-add-ins/authorization-and-authentication-of-sharepoint-add-ins" rel="nofollow noreferrer">Authorization and authentication of SharePoint Add-ins</a>
In previous versions of SharePoint (2013 and before) you were able to use URL re-write rules or response headers in IIS to fake CORS support that was lacking in SharePoint at the time. Now that it supports it, you can't fake it, and it requires authentication.
More information here-
<a href="https://techcommunity.microsoft.com/t5/microsoft-sharepoint-blog/fixing-issue-in-making-cross-domain-ajax-call-to-sharepoint-rest/ba-p/510001" rel="nofollow noreferrer">Fixing issue in making cross domain ajax call to SharePoint rest</a>

I am trying to implement share point file browser in my react application. Using <code>microsoft/file-browser</code> for this ans code as follows. But getting the <code>xxx... from origin 'http://localhost:3000' has been blocked by CORS policy</code>

Any ideas how can I enable CORS for this

<pre><code>import * as React from "react";

import { GraphFileBrowser } from '@microsoft/file-browser';

class App extends React.Component {


 getAuthenticationToken() {
 return new Promise&lt;string&gt;(resolve =&gt; {
 resolve(
 "VALID TOKEN"
 );
 });
 }

 render() {
 return (
 &lt;GraphFileBrowser
 getAuthenticationToken={this.getAuthenticationToken}
 onSuccess={(selectedKeys: any[]) =&gt; console.log(selectedKeys)}
 onCancel={(err: Error) =&gt; console.log(err.message)}
 endpoint='https://XXX.sharepoint.com'

 /&gt;
 );
 }
}

export default App;
</code></pre>

How to enable CORS in Sharepoint Online

翻译质量差，导致语言生硬或混乱。

没有提供实际的解决方法或示例。

解答不清晰，无法理解或解决问题。

页面排版不美观，阅读体验差。

文章

问答

视频

学习中心

腾讯云实验室

直播

竞赛

腾讯云代码分析专区

腾讯iOA零信任安全管理系统专区

腾讯云架构师技术同盟交流圈

腾讯云数据库专区

腾讯云顾问专区

腾讯云原生专区

腾讯混元专区

腾讯云TCE专区

腾讯云Lighthouse专区

腾讯云HAI专区

腾讯云Edgeone专区

腾讯云存储专区

腾讯云智能专区

腾讯轻联专区 

腾讯云开发专区

TAPD专区

腾讯轻量云游戏服专区

腾讯云最具价值专家

腾讯云架构师技术同盟

腾讯云创作之星

腾讯云开发者先锋

腾讯云代码助手

云原生构建

TAPD 敏捷项目管理

Cloud Studio

SDK中心

API中心

命令行工具

涵盖代码开发、场景应用、自动测试全流程，助你从零构建专属AI助手

一站式MCP教程库，解锁AI应用新玩法

我正试图在我的react应用程序中实现共享点文件浏览器。对此ans代码使用microsoft/file-browser如下所示。但是得到了xxx... from origin 'http://localhost:3000' has been blocked by CORS policy有什么想法吗?我怎样才能让CORS...

问如何在Sharepoint Online中启用CORS
EN

Stack Overflow用户

社区

活动

圈层

关于

腾讯云开发者

热门产品

热门推荐

更多推荐

问如何在Sharepoint Online中启用CORSEN