Search
Duplicate

CORS

Tags
๊ณต๋ถ€
Date
2023/05/16
๋น„๊ณ 
ํƒœ๊ทธ2

CORS(Cross-Origin Resource Sharing)

1. Origin

์„œ๋ฒ„์˜ ์œ„์น˜๋ฅผ ์˜๋ฏธํ•˜๋Š” URL๋“ค์€ ์—ฌ๋Ÿฌ ๊ฐœ์˜ ๊ตฌ์„ฑ ์š”์†Œ๋กœ ์ด๋ฃจ์–ด์ ธ ์žˆ๋‹ค.
์ด๋•Œ Origin์€ Protocol ๊ณผ Host ๊ทธ๋ฆฌ๊ณ  ์œ„ ๊ทธ๋ฆผ์—๋Š” ๋‚˜์™€์žˆ์ง€ ์•Š์ง€๋งŒ :80 , :443 ๊ฐ™์€ ํฌํŠธ ๋ฒˆํ˜ธ๋ฅผ ๋ชจ๋‘ํ•ฉ์นœ ๊ฒƒ์„ ์˜๋ฏธํ•œ๋‹ค.

2. CORS ๋™์ž‘ ๋ฐฉ์‹

๊ธฐ๋ณธ์ ์œผ๋กœ ์›น ํด๋ผ์ด์–ธํŠธ ์–ดํ”Œ๋ฆฌ์ผ€์ด์…˜์ด ๋‹ค๋ฅธ ์ถœ์ฒ˜์˜ ๋ฆฌ์†Œ์Šค๋ฅผ ์š”์ฒญํ•  ๋•Œ๋Š” HTTPํ”„๋กœํ† ์ฝœ์„ ์‚ฌ์šฉํ•˜์—ฌ ์š”์ฒญ์„ ๋ณด๋‚ด๊ฒŒ ๋˜๋Š”๋ฐ, ์ด๋•Œ ๋ธŒ๋ผ์šฐ์ €๋Š” ์š”์ฒญ ํ—ค๋”์— Origin ์ด๋ผ๋Š” ํ•„๋“œ์— ์š”์ฒญ์„ ๋ณด๋‚ด๋Š” ์ถœ์ฒ˜๋ฅผ ํ•จ๊ฒŒ ๋‹ด์•„์„œ ๋ณด๋‚ธ๋‹ค.
โ€ข
Preflight Request
โ€ข
Simple Request
์ฆ‰์‹œ cross origin์ธ์ง€ ํ™•์ธํ•˜๋Š”๋ฐ, ๋‹ค์Œ ์กฐ๊ฑด์„ ๋ชจ๋‘ ์ถฉ์กฑํ•ด์•ผํ•œ๋‹ค
1.
๋ฉ”์„œ๋“œ๋Š” GET/POST/HEAD ์ค‘ ํ•˜๋‚˜
2.
ํ—ค๋”๋Š” Accept,Accept-Language,Content-Language,Content-Type๋งŒ ํ—ˆ์šฉ
3.
Content-Type ํ—ค๋”๋Š” ๋‹ค์Œ์˜ ๊ฐ’ ๋“ค๋งŒ ํ—ˆ์šฉ
a.
application/x-www-form-unlencoded
b.
multipart/form-data
c.
text/plain
โ€ข
์ธ์ฆ์ •๋ณด ํฌํ•จ