jsonapi Cross-Origin Read Blocking (CORB) blocked cross-origin response in vue

I got the data with postman in json:api at drupal. enter image description here But I has error of CORB in Vue-resource.get() with code blew:

 data(){     return{         cyclePic:[],         rootUrl:this.$  http.options.root,         header:{headers:{Accept:'application/vnd.api+json',             'Content-type':'application/vnd.api+json',             Authorization:"Basic dG1wQWRtaW46VG1wQDEyMyM0NTY="}                             }                          } }, created(){     this.getCycleList() }, methods:{     getCycleList(){          this.$  http.get('jsonapi/node/banner?include=field_image',this.header).then(result=>{             console.log(result)              if(result.ok && result.status===200){                 this.cyclePic=result.body.included                 console.log(this.cyclePic)             }else{                 Toast('Fail')             }          })     } 

what i miss some thing?

how can i bypass chrome Cross-Origin Blocking to perform dns rebinding?

here is the article that i am trying to follow .. DNS-Rebinding-Attack

i didn’t use linux like the Writer did …. i registered an account on a Free Web Hosting site … then uploaded the php files on it after adding my router ip to it but all what i got was this from the console tap

Cross-Origin Read Blocking (CORB) blocked cross-origin response https://infinityfree.net/errors/404/ with MIME type text/html. See https://www.chromestatus.com/feature/5629709824032768 for more details.

although i tried various ways to do it …. it was the same response from chrome some of the ways i tried

[PHP] Thahelper – cURL & PHP – Website Login – Pastebin.com

pastebin*.*com/pBUS0tSR from curl-to-PHP: Convert Curl commands to PHP code site

pastebin*.*com/FV8dc53T i got it from site that i don’t remember …. although it doesn’t have the Frm_Logintoken= tag that is needed in logging in .. i got the same response using it !!!!

and of course the writer php file pastebin*.*com/eDKjxNDN

and the pics of what i got of course enter image description here

enter image description here

and when i blocked my ip just like the article i got this

enter image description here

note i didn’t follow the full steps as i didn’t use linux so i skipped the DNS server ( Bind9 ) part .. and it’s zone configuration btw is there any alternatives to this online ?

just remove the Asterisk from the links i don’t have enough score to post more than 8 links

thanks every reply is appreciated 🙂

Uncaught DOMException: Blocked a frame with origin “https://www.youtube.com” from accessing a cross-origin frame. at :1:16

hola soy nueva en esto quisiera saber a causa de que sale este mensaje de bloqueo e visto la consola de la pagina de google y también genera bloqueos entonces no es un erro de mi proyecto si alguien sabe la causa de ese mensaje lo agradecería muchísimo

Cross-Origin Request Blocked with Flask when using BasicAuth

I have a Flask application containing various images displaying some clusters constructed by a K-Means algorithm. The user should be able to select one or several images and afterwards get redirected to a web-page where the clusters can be further assessed. The application worked as intended until I added basic access authentication.

Specifically, my (simplified) python script goes as follows:

from flask import Flask, render_template, request, redirect, url_for  from flask_cors import CORS from flask_basicauth import BasicAuth  app=Flask(__name__)  app.config['BASIC_AUTH_USERNAME'] = os.environ['AUTH_USERNAME'] app.config['BASIC_AUTH_PASSWORD'] = os.environ['AUTH_PASSWORD'] app.config['BASIC_AUTH_FORCE']= True basic_auth=BasicAuth(app)  CORS(app)   @app.route('/') def show_index():     images=os.listdir(app.root_path+"/static/img/")     return render_template("cluster_images.html", cluster_images = images)  @app.route("/filter", methods=["POST", "GET"]) def filter(): if request.method=="POST":     sel=request.get_json()  #Do some operations with sel 

The problem appears when I try to redirect to the /filter route from the main route which is done by “btn1”. The following shows the function from “cluster_images.html” taking care the http request when btn1 is fired

$  ("document").ready(function() {     $  ("#btn1").click(function(){ $  .ajax({     type: 'POST',     beforeSend: function(){         $  ('.loader')},         contentType: 'application/json',         url:  "http://localhost:5000/filter",         dataType : 'html',         data : JSON.stringify(images), success: function(){window.location.href = "http://localhost:5000/filter"} }) }) }) 

When I press the button I get the following error:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at http://localhost:5000/filter. (Reason: CORS preflight channel did not succeed).[Learn More]