d0zingcat/cors-anywhere
1
0
Fork 0
mirror of https://github.com/d0zingcat/cors-anywhere.git synced 2026-05-13 15:09:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
61d55ae41e74ddeca5712774b0e81c7ddc0063ef
cors-anywhere/demo.html
Rob Wu 61d55ae41e Avoid preflight request by relaxing header req 
One of the following headers is required by default:
- Origin: This header is always sent with CORS requests.
- X-Requested-With: This header is automatically added by jQuery on
  same-origin requests.

These two headers effectively disable the ability to use the CORS
proxy for regular browsing.
2013-08-27 16:15:10 +02:00

143 lines
3.8 KiB
HTML
Raw Blame History

<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>Demo of CORS Anywhere</title>
<meta name="viewport" content="width=device-width">
<style>
html, body {
margin: 0;
height: 100%;
padding: 3px;
font-family: Arial, sans-serif;
font-size: 16px;
}
* {
-moz-box-sizing: border-box;
box-sizing: border-box;
}
label { display: block; }
input {
display: block;
width: 100%;
padding: 8px 5px;
border: 1px solid #CCC;
}
button {
display: inline-block;
width: 49%;
padding: 8px;
}
textarea {
width: 100%;
height: 100%;
}
#top {
height: 180px;
position: relative;
}
#bottom {
height: 100%;
margin-top: -180px;
padding-top: 180px;
}
</style>
</head>
<body>
<div id="top">
CORS Anywhere demo &bull; <a href="https://github.com/Rob--W/cors-anywhere/">Github</a> &bull; <a href="http://cors-anywhere.herokuapp.com">Live server</a>.
<label>
Url to be fetched (example: <a href="//robwu.nl/dump.php">robwu.nl/dump.php</a>)
<input type="url" id="url" value="">
</label>
<label>
If using POST, enter the data:
<input type="text" id="data">
</label>
<label>
<button id="get">GET</button><button id="post">POST</button>
</label>
</div>
<div id="bottom">
<textarea id="output"></textarea>
</div>
<script>
var protocol = location.protocol === 'http:' ? 'http:' : 'https:';
var cors_api_url = protocol + '//cors-anywhere.herokuapp.com/';
function doCORSRequest(options, redirectCount) {
var x = new XMLHttpRequest();
x.open(options.method, cors_api_url + options.url);
x.onload = function() {
if (x.status === 333) {
redirectCount = +redirectCount ? +redirectCount + 1 : 1;
var redirectInfo = /^(\d+) (.*)$/.exec(x.statusText);
if (redirectInfo && redirectCount <= 5) {
var originalStatus = +redirectInfo[1];
var url = redirectInfo[2];
if (originalStatus === 307 || originalStatus === 308) {
// Correctly deal with method-preserving redirects
options.url = url;
doCORSRequest(options, redirectCount);
} else {
// Otherwise just change to GET
doCORSRequest({
method: 'GET',
url: url,
success: options.success,
error: options.error
}, redirectCount);
}
} else {
options.error(options, x.status, x.statusText);
}
} else if (x.status >= 200 && x.status < 300 || x.status === 304) {
options.success(options, x.status, x.statusText, x.responseText);
} else {
options.error(options, x.status, x.statusText);
}
};
x.onerror = function() {
options.error(options, x.status, x.statusText);
};
x.send(options.data);
}
// Bind event
(function() {
var urlField = document.getElementById('url');
var dataField = document.getElementById('data');
var outputField = document.getElementById('output');
document.getElementById('get').onclick = function(e) {
e.preventDefault();
doCORSRequest({
method: 'GET',
url: urlField.value,
success: onSuccess,
error: onError
});
};
document.getElementById('post').onclick = function(e) {
e.preventDefault();
doCORSRequest({
method: 'POST',
url: urlField.value,
data: dataField.value,
success: onSuccess,
error: onError
});
};
function onSuccess(options, statusCode, statusText, responseText) {
outputField.value = options.method + ' ' + options.url + '\n' + statusCode + ' ' + statusText + '\n\n' + responseText;
}
function onError(options, statusCode, statusText) {
outputField.value = options.method + ' ' + options.url + '\n' + statusCode + ' ' + statusText;
}
})();
</script>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink