Golang : Allow Cross-Origin Resource Sharing request
Problem:
You have a client JavaScript code that want to make XHR(XMLHttpRequest) request to another Golang server which is also controlled by you. However, on the client's browser console shows CORS (Cross-Origin Resource Sharing) error messages. How to fix the issue?
Solution:
Normally, a server should not allow XMLHttpRequest made by another unauthorized client. However, to enable Cross-Origin Resource Sharing, you will need to set the server header with Access-Control-Allow-Origin:* to the response.
w.Header().Set("Access-Control-Allow-Origin", "*") // usually, this line is enough, but you can add the following options.
If you want to add more specific headers, these are some of the options
w.Header().Set("Access-Control-Allow-Credentials", "true")
w.Header().Set("Access-Control-Allow-Methods", "OPTIONS, GET, POST")
w.Header().Set("Access-Control-Allow-Headers", "Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control")
If you're using Nginx, Apache or Caddy as proxy instead of directly serving up from your Golang program. You can add the allow CORS and XHR headers in the proxy server configuration. For example, this tutorial shows how to do that with Caddy. (https://www.socketloop.com/tutorials/golang-setup-api-server-or-gateway-with-caddy-and-http-listenandserve-function-example)
Here you go!
package main
import (
"net/http"
"strings"
)
func SayHelloWorld(w http.ResponseWriter, r *http.Request) {
w.Write([]byte("Hello, World!"))
}
func ReplyName(w http.ResponseWriter, r *http.Request) {
w.Header().Set("Access-Control-Allow-Origin", "*") // usually, this line is enough, but you can add the following options.
w.Header().Set("Access-Control-Allow-Credentials", "true")
w.Header().Set("Access-Control-Allow-Methods", "OPTIONS, GET, POST")
w.Header().Set("Access-Control-Allow-Headers", "Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control")
URISegments := strings.Split(r.URL.Path, "/")
if URISegments[2] != "" {
w.Write([]byte(URISegments[2]))
} else {
w.Write([]byte("You gotta give a name for me to reply...."))
}
}
func main() {
// http.Handler
mux := http.NewServeMux()
mux.HandleFunc("/", SayHelloWorld)
mux.HandleFunc("/replyname/", ReplyName)
http.ListenAndServe(":8080", mux)
}
See also : Golang : Setup API server or gateway with Caddy and http.ListenAndServe() function example
By Adam Ng
IF you gain some knowledge or the information here solved your programming problem. Please consider donating to the less fortunate or some charities that you like. Apart from donation, planting trees, volunteering or reducing your carbon footprint will be great too.
Advertisement
Tutorials
+13.6k Golang : Human readable time elapsed format such as 5 days ago
+20.7k Golang : How to force compile or remove object files first before rebuild?
+6.3k Unix/Linux : How to get own IP address ?
+9.7k Golang : Setting variable value with ldflags
+21.9k Golang : Repeat a character by multiple of x factor
+13.2k Golang : Read XML elements data with xml.CharData example
+6.7k Golang : Find the shortest line of text example
+18.5k Golang : Padding data for encryption and un-padding data for decryption
+11.9k Golang : md5 hash of a string
+4k Golang : Converting individual Jawi alphabet to Rumi(Romanized) alphabet example
+11.4k Golang : Gorilla web tool kit secure cookie example
+17.4k Golang : How to make a file read only and set it to writable again?