Angular 2 - resolving the access control allow origin header issue

My project utilizes Spring on the back-end and Angular2 on the front-end. In the webapp folder of my Spring project, there is a JSON file that I am attempting to access from Angular.

I can successfully access the file by directly typing "http://localhost:8080/project1/test.json"

However, when trying to access the same link from Angular, I encounter an error message stating "no access control allow origin header"

Here is a snippet of my Angular code: 1. Function getJson() defined in service.ts:

getJson(){
    return this.http.get('http://localhost:8080/project1/test.json')
    .map((response:Response) => response.json());
}

  1. Calling getJson():

    results=[];

    this._manoService.getJson().subscribe(resJsonData => this.results = resJsonData);

I have created proxy.conf.json with the following configuration:

{
 "/project1": {
 "target": "http://localhost:8080",
 "secure": false
   } 
}

In addition, I have added "start": "ng serve --proxy-config proxy.conf.json", to package.json

Despite these changes, I continue to face the same issue. Am I missing something here?

javaspringangulartypescript

Answer №1

Web browsers enforce a same origin policy for security purposes. If your Angular page is hosted on a different origin, such as localhost:3000 instead of localhost:8080, the browser will block access.

The same origin policy is crucial in ensuring that sensitive information, like your bank account details, remains secure when you visit other websites.

To enable cross-origin access, there are various methods available. One simple approach is to host both your Angular application and service on the same domain and port in production. During development, you can configure ng serve to act as a proxy server, forwarding requests from localhost:3000 to localhost:8080. Detailed instructions can be found in the Angular proxy documentation.

If you require cross-origin requests even in production, Spring offers an easy way to allow it by using the @CrossOrigin annotation in your service methods. This may impact cookie-based authentication, so exploring alternatives like oauth is recommended. Adding the @CrossOrigin annotation will prompt Spring-REST to include the Access-Control-Allow-Origin http-header.

An alternative to proper CORS implementation is JSONP, but this method is considered outdated and should be avoided. JSONP works by utilizing the ability to include a <script> tag from any origin, allowing the server to return JavaScript code that invokes a specified callback function with relevant data.

Answer №2

Suppose you have a Spring @RestController service that needs to be accessed from a website outside of the server it's running on. In this case, simply add a @CrossOrigin annotation to the handler method.

For instance, in the following example, the @CrossOrigin is only enabled for the addSite handler method.

@RestController
public class SiteController {

    @Autowired
    private SiteServiceImpl siteService;

    @CrossOrigin(origins = "*")
    @RequestMapping(method = RequestMethod.POST, value = "/api/sites")
    public void addSite(@RequestBody Site site){
        siteService.addSite(site);
    }

You can also enable @CrossOrigin for the entire controller by adding it at the @RestController level.

For example:

@RestController
@CrossOrigin(origins = "*")
public class SiteController {

    @Autowired
    private SiteServiceImpl siteService;


    @RequestMapping(method = RequestMethod.POST, value = "/api/sites")
    public void addSite(@RequestBody Site site){
        siteService.addSite(site);
    }

The @CrossOrigin(origins = "*") annotation allows resources external to the rest service to consume it. If the service should only be accessible from specific origins, update the origins value to the server name where those resources are located, e.g., 

@CrossOrigin(origins = "http://myothersite.com")

Additional information on this topic can be found on the Spring website: cors-support-in-spring-framework

Similar questions

If you have not found the answer to your question or you are interested in this topic, then look at other similar questions below or use the search

Utilizing Observable to dynamically bind ngClass in Angular

I currently have a container with the following structure <mat-sidenav-container [ngClass]="{'sidepanel-opened': ((isSidePanelVisible$ | async) as isSidePanelVisible) == true }"> </mat-sidenav-container> I am trying to u ...

angulartypescriptrxjsangular-templateangular-pipe

Creating a View-Model for a header bar: A step-by-step guide

I am looking to develop a View-Model for the header bar using WebStorm, TypeScript, and Aurelia. In my directory, I have a file named header-bar.html with the following code: <template bindable="router"> <require from="_controls/clock"></ ...

javascriptangulartypescriptwebstormaurelia

Limit the range of potential inputs for the function parameter

class Coordinate { constructor(readonly x: number, readonly y: number) {} } const Up = new Coordinate(0, -1); const Right = new Coordinate(1, 0); const Down = new Coordinate(0, 1); const Left = new Coordinate(-1, 0); // How can we restrict the directio ...

typescript

What could be the reason that my Bootstrap dropdown menu is not appearing on my website

I am currently utilizing Angular in my project. I have incorporated bootstrap and jQuery via NPM install, and specified them as dependencies in angular.json. The navbar on my site contains a dropdown menu. When I hover over the dropdown menu, it should di ...

htmlcssangulartwitter-bootstrapbootstrap-5

Creating a generic class in Typescript that can only accept two specific types is a powerful

When designing a generic class, I am faced with the requirement that a property type must be either a string or number to serve as an index. If attempting something like the code snippet below, the following error will be triggered: TS2536: Type 'T ...

angulartypescripttypescript-typingsreact-typescript

Angular4 Error: Unable to link to 'ngClass' as it is not recognized as a property of 'input'

Currently, I am facing an issue in my project where I am utilizing lazy loading. Specifically, within my registration module, I am attempting to utilize the [ngClass] directive to append an 'invalid' class when there are validation errors present ...

angulartypescript

The HTTP GET request was successful, however, there is no data being displayed on the screen

I am currently facing an issue with fetching data from a web server. The data is retrieved successfully as I can see the object in the console log, but it does not render in the component template. export class CountrydetailsComponent implements OnInit { ...

javascriptnode.jsangularexpress

Manually close the AntD Menu without using any shortcuts

I'm facing a unique situation with my table implemented using antd. Each row has a dropdown menu that opens a modal upon clicking. To ensure the dropdown menu doesn't trigger the row click event, I used stopPropagation on the menu item click. Eve ...

javascriptreactjstypescriptantd

What is the best way to map the JSON object from an API response to Java classes, especially when there is an intermediate JSON attribute called "data"?

Greetings for taking the time to visit. I am utilizing a JSON REST API (provided by Directus CMS). Each API response consists of a JSON object with a "data" attribute containing the desired information. { "data": { "id": 1, "status": "p ...

javajsonspringresttemplate

Is it possible for the Angular service worker to refresh cached data keys?

My website is powered by express.js with index.html being rendered through the EJS Template Engine. Upon initially visiting my website, index.html displays correctly. However, upon refreshing the page, index.html is loaded from the service worker's ...

angularexpressservice-worker

Tips for binding to a single input box within an ngFor loop

Can anyone lend a hand with some code? I'm working on a straightforward table using ngFor, but I'm facing an issue with input binding. The problem is that all the input fields generated by ngFor display the same value when typing. How can I preve ...

javascriptangulartypescriptionic-framework

Tips for using conditional rendering with React and TypeScript

Issue with Conditional Rendering in TypeScript It seems like I might have encountered a problem with the way I declare my components. Take a look at this TypeScript snippet: import React, { FunctionComponent } from 'react'; export const Chapte ...

javascriptreactjstypescriptecmascript-6

Is a special *ngFor required when implementing Angular2 with Nativescript?

My current project involves creating a mobile app that requires listing a few labels. Here is the code snippet: @Component({ selector: 'code-m', template: ` <StackLayout dock="top" orientation="vertical" style="height: ...

angularnativescriptngfor

Hold on for the next observable before moving forward

Whether or not I should include any code in this post is uncertain. However, I am willing to do so if necessary. I currently have an Angular2 directive called MyDirective and a service named MyService. The service performs an http call within its construc ...

angularrxjs

How can you merge arrays in Angular based on their unique names?

Is there a way to combine objects within the same array in Angular based on their names? [{ "name":"Navin", "id":"1" }, { "name":"Navin", "mark1":"98" ...

angulartypescript

How come TypeScript doesn't recognize my MongoDB ObjectID as a valid type?

Currently, I am working with Node.js, MongoDB, and TypeScript. The code snippet below is error-free: const ObjectID = require("mongodb").ObjectID; const id = new ObjectID("5b681f5b61020f2d8ad4768d"); However, upon modifying the second line as follows: ...

node.jsmongodbtypescript

Angular Delight: Jaw-Dropping Animation

After setting up my first Angular project, I wanted to incorporate Angular Animations to bring life to my content as the user scrolls through the page. I aimed to not only have the content appear on scroll but also implement a staggering animation effect. ...

htmlcssangulartypescriptanimation

Dealing with mouseover and mouseout events for ul li elements in Angular 9: An easy guide

Having trouble showing and hiding the span tag using mouseover and mouseout events. The ul and li elements are generating dynamically, so I attempted to toggle the display between block and none but it is not working as expected. Does anyone have a solutio ...

angulartypescriptangular8

Modify the animation attribute of the <circle> element using AngularJS

A new feature I implemented in my web app is a customizable countdown timer. As an added visual enhancement, I am now looking to create an animated circle around the timer. The animation duration will vary based on the countdown length. Here is a snippet ...

angularsvgcss-animations

Creating dynamic HTML with Angular 2 using property binding

After retrieving an HTML string from the database, I came across html='<span>{{name}}</span>' where 'name' is a component property. I am looking to display this string in HTML while maintaining the name binding. I have expl ...

angular