【JavaScript:编译错误】Image from origin 'file://' has been blocked from loading by Cross-Origin Resource

最新推荐文章于 2024-06-24 15:19:44 发布
最新推荐文章于 2024-06-24 15:19:44 发布
阅读量2.9k 收藏
点赞数
分类专栏: errorReason javaScript
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weitaming1/article/details/84836719
版权

问题描述:

Image from origin 'file://' has been blocked from loading by Cross-Origin Resource Sharing policy: Received an invalid response. Origin 'null' is therefore not allowed access.

中文翻译:来自“file://”的图像已被跨源资源共享策略阻止加载:收到无效响应。 因此不允许原点'null'访问。

 

当时直接用chrome浏览器打开three.js中的example中的 .html文件。【比如webgl_materials_texture_anisotropy.html】

正常的:

断点:

three.js  中34444 行: var image = document.createElementNS( 'http://www.w3.org/1999/xhtml', 'img' );

html中117行:var texture1 = textureLoader.load( "textures/crate.gif" );

html中124行:var texture2 = textureLoader.load( "textures/crate.gif" );

发现可能是“异步加载”的原因,导致html中加载的函数都运行好一段时间后才报错,并且除了部分没显示,其他内容都正常显示了。

 

问题分析:

可能还是JavaScript限制了读取本地文件的问题。

 

解决方法:

  1、在chrome快捷方式中的属性中添加上--allow-file-access-from-files 这个命令行参数。

  但是这个方法是不一定好,必须手动修改快捷方式的内容。

  不知道是否可以通过代码设置来处理。这样不需要客户都修改自己的浏览器参数。

  而且这个读取本地文件的方法是否会应生出其他不安全的隐患?

天有行-地无迹-千秋怎堪一剑扫
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
OurCamera:https://www.nytimes.com20180315nyregionbike-lane-blocked-new-york.html
02-06
我们的相机 该项目使用Google的TensorFlow Machine学习包来识​​别和分类NYC街道上的车辆类型。 数据图像是从NYC DOT摄像机下载的。 训练数据文件夹包含一系列图像和训练注释。 建立 从安装Tensorflow ...
cos-nodejs-sdk-v5:腾讯云 COS Nodejs SDK(XML API)
07-23
cos-nodejs-sdk-v5腾讯云 COS Nodejs SDK()installnpm i cos-nodejs-sdk-v5 --savedemo// 引入模块var COS = require('cos-nodejs-sdk-v5');// 创建实例var cos = new COS({ SecretId: '...
Origin 'file://' is therefore not allowed access.
weixin_34255793的博客
09-27 2204
今天在用ajax交互数据时遇见了这样的问题 经过百度发现: 只要在nodejs加上express框架,在服务器代码文件中加入下面的跨域允许权限,即可解决问题 app.all('*', function(req, res, next) { res.header("Access-Control-Allow-Origin", "*"); ...
Image from origin 'http://bubuol.com' has been blocked from loading by Cross-Origin Resource Sharing
Steinadler的专栏
10-29 1万+
换了src地址,就会报错:Image from origin 'http://bubuol.com' has been blocked from loading by Cross-Origin Resource Sharing policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
Blocked a frame with origin “XXX“ from accessing a cross-origin frame.
最新发布
weixin_42097259的博客
06-24 375
父子通讯采用 addEventListener 与 postMessage。由于无法获取父页面属性,所有只能指明源地址为*这个是因为违反csp规定,具体介绍查看。
Access to internal resource at ‘file..‘ from origin ‘null‘ has been blocked by Cross origin request
qq_41995398的博客
08-02 2980
报错完整信息是:Access to internal resource at 'file:///C:/manifest.json' from origin 'null' has been blocked by CORS policy: Cross origin requests are only supported for protocol schemes: http, data, chrome, chrome-extension, chrome-untrusted, https. 翻译过来就是:CORS
引用import的JS报错:Access to script at 'file:' from origin 'null' has been blocked by CORS policy(3种解决手段)
热门推荐
xiao廸要飞
05-12 4万+
直接引用带有import关键字的JS脚本会报错:Access to script at ‘file:’ from origin ‘null’ has been blocked by CORS policy index.html <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=devic
跨源资源共享 (解决跨域问题)
sinat_55275851的博客
09-15 695
跨源资源共享 (解决跨域问题)
跨域的解决方案有多重JSONP、Flash、Iframe等,当然还有CORS(跨域资源共享,Cross-Origin Resource Sharing)
01-06
然而,随着Web应用的发展,跨域数据交互的需求日益增多,因此催生了一系列跨域解决方案,包括JSONP、Flash、Iframe以及CORS(跨域资源共享,Cross-Origin Resource Sharing)。 首先,JSONP(JSON with Padding)是...
Minecraft-Blocked-Servers:如果服务器违反了EULA,则Mojang会阻止它们。 https的分支
05-26
我的世界阻止的服务器描述自Minecraft 1.9.3 r2起,Mojang希望禁止不遵守Minecraft EULA的服务器。 Mojang通过电子邮件与这些服务器联系(“ Mojang BrandEnforcement”)。 如果他们仍然不遵循EULA,则服务器地址将...
corsyusha:简单快速的代理,可在针对现有API进行原型设计时绕过CORS问题,而不必担心CORS
04-30
has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch ...
HTML5的多个video标签:截取视频源的封面图poster,监听视频播放状态的功能
01-14
我们是否也会遇到过,有些浏览器在显示这标签,兼容不太友好,video标签的封面是一层黑色的,而不是视频的封面图。 那么,此时,我们就得截取每个视频的封面图来,因为video标签有个属性poster是用来储存封面图地址的,但需注意先用本地视频,非本地视频会有跨域截取问题,这个得跟后端开发协作处理。
Cross-origin image load denied by Cross-Origin Resource Sharing policy.
koloumi的博客
03-31 1391
跨域问题问题上已经写着很清楚是跨域安全上的问题了,直接放上解决方案。如果你的服务器是iis那么打开服务器在你对应的网站项目的http响应头 上加上 如果是java的服务器那就在相应的拦截的地方加上请求的拦截然后往请求里写 response.setHeader("Access-Control-Allow-Origin", "*");就OK
js图片下载(支持跨域/解决Access-Control-Allow-Origin)
momDIY的博客
01-12 9082
一、思路 使用canvas绘制图片 使用toBlob方法将canvas图片转换为文件 使用a标签的download属性下载这个canvas转化生成的图片文件 canvas.toBlob() 将canvas图像转换为文件 参数一为可操作的blob对象构成的的回调函数 参数二为生成的图片后缀名,默认为png 参数三为生成图片的质量,比如0.9 二、源码 const imageDownload ...
vite创建的项目,打包后的文件本地预览报错 Access to script at ‘...‘ from origin ‘null‘ has been blocked by COR
小白成长记
08-29 4026
http-server -p 8090 // 8090为自己设置的端口号,不要跟之前打开的冲突即可。打包后的文件打开报错,原因是file文件不支持import,需要开启个服务。打开图中地址即可访问打包后的项目。进入打包后的文件夹,运行cmd。...
跨域(二)CORS
二豪码字
09-14 1072
CORS跨域是目前使用最多的跨域解决方案,是W3C的一种技术规范,2014年起成为行业的标准,当前所有的浏览器都支持CORS。属于HTTP的一部分。 CORS(Cross-origin resource sharing):跨域资源共享。要实现CORS需要前后端同时的支持,而浏览器自动给支持CORS,所以设置主要是服务器端。 浏览器将CORS请求分为两种:简单请求和非简单请求。 简单请求(同时满足两大条件): (1)请求方法是以下三种之一: HEAD GET POST (2)Http的头信息不超出以下几种字段
Access to script at ‘file:///...‘ from origin ‘null‘ has been blocked by CORS policy: Cross origin
m0_49382941的博客
12-08 2359
问题发生在引入自定义模板 html内容: <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title></title> </head> <body> </body> </html> <script type="module"> import * as f1 from './project01.j
关于File文件类的使用
origin_edge的博客
05-21 3647
这次说下与File有关的4个方法,分别是: 创建文件夹 创建文件 删除文件 打印文件属性 一.创建文件夹首先说下第一个创建文件夹的方法,创建文件夹有两个方法,分别是mkdir()和mkdirs(),在使用File这个类之前,必须先实例化这个类的对象File file = new File("e:/lenovo/study/123");File类与其他类有所不同,括号中填写的是文件夹或文件的路径 创
from origin 'http://localhost:8081' has been blocked by CORS policy
08-18
The CORS (Cross-Origin Resource Sharing) policy is a security measure implemented by web browsers to restrict access to resources (such as APIs) on a different origin (domain, protocol, or port) than the one the web page is served from. In your case, it seems that you are making a request from 'http://localhost:8081' to a different origin, and the server is blocking that request due to CORS policy restrictions. To resolve this issue, you can try the following solutions: 1. Enable CORS on the server-side: If you have control over the server-side code, you can configure the server to include the appropriate CORS headers in the response. These headers allow the browser to determine if it should allow the request. The minimal required headers are 'Access-Control-Allow-Origin' and 'Access-Control-Allow-Methods'. You can set the value of 'Access-Control-Allow-Origin' to '*' to allow requests from any origin during development. However, in production, it's recommended to set it to the specific origin of your application. 2. Use a proxy server: If you don't have control over the server-side code or enabling CORS is not feasible, you can set up a proxy server that acts as an intermediary between your client-side code and the server. Your client-side code will make requests to the proxy server, and the proxy server will forward those requests to the actual server. Since the proxy server will be on the same origin as your client-side code, you won't face any CORS issues. 3. Disable CORS in the browser: Although not recommended for production environments, during development, you can disable CORS checks in your browser. Keep in mind that this is a temporary solution and should not be used in a production environment. The method to disable CORS varies between browsers, so you need to search for instructions specific to your browser. Remember to consider security implications when implementing any solution and ensure that proper CORS configurations are applied in a production environment.
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值