Enabling Cross-Origin Resource Sharing on IIS7
Enabling Cross-Origin Resource Sharing (CORS) on IIS7 is necessary to allow asynchronous resource requests to be made across different origins, overcoming browser security restrictions. However, problems can arise when IIS7 returns a 405 Method Not Allowed error prior to a successful 200 response.
Resolving the 405 Method Not Allowed Error
The 405 error typically occurs because IIS7 handles the HTTP OPTIONS response, which precedes the actual request, instead of forwarding it to your application. To correct this:
With these changes, IIS7 will forward the HTTP OPTIONS verb to your application.
Alternative Solution: Handling OPTIONS Verb in BeginRequest
Alternatively, you can handle the HTTP OPTIONS verb manually in your application's BeginRequest method:
<code class="c#">protected void Application_BeginRequest(object sender, EventArgs e)
{
HttpContext.Current.Response.AddHeader("Access-Control-Allow-Origin", "*");
if (HttpContext.Current.Request.HttpMethod == "OPTIONS")
{
// Handle HTTP OPTIONS pre-flight request
HttpContext.Current.Response.AddHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE");
HttpContext.Current.Response.AddHeader("Access-Control-Allow-Headers", "Content-Type, Accept");
HttpContext.Current.Response.AddHeader("Access-Control-Max-Age", "1728000");
HttpContext.Current.Response.End();
}
}</code>By implementing one of these approaches, you can enable CORS on IIS7 and resolve the 405 error to ensure successful cross-origin requests.
The above is the detailed content of Why Does IIS7 Return a 405 Method Not Allowed Error When Enabling CORS?. For more information, please follow other related articles on the PHP Chinese website!
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
