Access-Control-Allow-Origin by same domain?

Question

XMLHttpRequest cannot load http://server.chatcoding.net:8000/socket.io/
socket.io.js.
Origin http://www.chatcoding.net is not allowed by Access-Control-Allow-Origin.

That thing is preventing the socket script from loading. What happened here? It's still on the same domain, but why is it emitting that error?

Anyone? Thank you. :)

It's not on the same domain, and not on the same port. – Qantas 94 Heavy May 14 '13 at 05:29 — Qantas 94 Heavy, May 14 '13 at 05:29

score 3 · Answer 1 · answered May 14 '13 at 05:15

3

You are on a same domain, but different ports (80 and 8000; source). the cross-domain policy is then applied. Try to setup your response header like that :

response.setHeader("Access-Control-Allow-Origin", "*")

answered May 14 '13 at 05:15

Yooz

2,446
19
30

score 0 · Answer 2 · answered May 14 '13 at 05:10

0

please check if CORS is enabled on your server. Refer to http://enable-cors.org/server.html for help on how to enable it.

Kind regards

answered May 14 '13 at 05:10

Marco

20,296
6
68
109

score 0 · Answer 3 · edited May 23 '17 at 11:54

0

Looks like a sub-domain issue. You'll need to check who is requesting your page and if they are allowed (such as any sub-domain), send the header.

I used this to answer this question: https://stackoverflow.com/a/9737907/1215393

edited May 23 '17 at 11:54

Community

1
1

answered May 14 '13 at 05:10

Jared

2,908
4
25
41

Thank you for that answer, but it seems that the problem has been fixed by creating a subdomain called server.www.chatcoding.net. Weird though. – thisjt May 14 '13 at 06:09
@JoshuaLangit123 Woah. That's new. – Jared May 14 '13 at 08:24

score 0 · Answer 4 · answered May 21 '20 at 23:28

0

server.chatcoding.net and www.chatcoding.net are basically two different domains(but the subdomains are same).

answered May 21 '20 at 23:28

Manjunath Bhadrannavar

129
1
5

Access-Control-Allow-Origin by same domain?

4 Answers4