Title: call of javascript function to external https url always blocked by cors Last modified: March 25, 2020 --- # call of javascript function to external https url always blocked by cors * Resolved [mhery](https://wordpress.org/support/users/mhery/) * (@mhery) * [6 years, 1 month ago](https://wordpress.org/support/topic/call-of-javascript-function-to-external-https-url-always-blocked-by-cors/) * I created a javascript function that have to be called every time someone clicks a button. This is the code of it, present on file /wp-includes/js/utm.js: * ``` function event_click() { document.getElementById("cf_submit-site-aa7bccxxxx").addEventListener("click", prepareData2DB); console.log("ready"); } function prepareData2DB() { // prepare body to send request visitant = ...; send2DB(visitant); } } function send2DB(visitant) { var xmlHttp = new XMLHttpRequest(); xmlHttp.onreadystatechange = function() { if (this.readyState == 4 && this.status == 200) { console.log('response:' + this.response); } }; xmlHttp.open("POST", "https://xyz.com.br/", true); xmlHttp.setRequestHeader('Content-type', 'application/json'); xmlHttp.setRequestHeader('Access-Control-Allow-Origin', '*'); xmlHttp.setRequestHeader('Access-Control-Allow-Methods', 'POST'); xmlHttp.setRequestHeader('Access-Control-Allow-Headers', 'Content-Type'); xmlHttp.send(JSON.stringify(visitant)); } ``` * This file is imported on footer.php: * `` * When the button is clicked and the function triggered, I got this error on console: * > Access to XMLHttpRequest at ‘[https://xyz.com.br/’](https://xyz.com.br/’); > from origin ‘[https://wordpress-host.com.br’](https://wordpress-host.com.br’); > has been blocked by CORS policy: Response to preflight request doesn’t pass > access control check: No ‘Access-Control-Allow-Origin’ header is present on > the requested resource * I already added this code on functions.php: * ``` function add_cors_http_header(){ header("Access-Control-Allow-Origin: *"); } add_action('init','add_cors_http_header'); ``` * And using both [https://corsproxy.github.io/](https://corsproxy.github.io/) and [https://cors-anywhere.herokuapp.com/](https://cors-anywhere.herokuapp.com/) on call with the xyz url, I got: * > net::ERR_CONNECTION_CLOSED * Last, I used [this](https://br.wordpress.org/plugins/wp-cors/) plugin, but neither worked. * I don’t know what else I can do to transpass this error. Viewing 2 replies - 1 through 2 (of 2 total) * Moderator [bcworkz](https://wordpress.org/support/users/bcworkz/) * (@bcworkz) * [6 years, 1 month ago](https://wordpress.org/support/topic/call-of-javascript-function-to-external-https-url-always-blocked-by-cors/#post-12588647) * Setting a header on your site is not effective. The target site is the one that needs to allow remote access. If they will not do that there’s nothing you can do. * Thread Starter [mhery](https://wordpress.org/support/users/mhery/) * (@mhery) * [6 years, 1 month ago](https://wordpress.org/support/topic/call-of-javascript-function-to-external-https-url-always-blocked-by-cors/#post-12622652) * [@bcworkz](https://wordpress.org/support/users/bcworkz/) thanks for your response, it helped me to solve the problem. I put cors header on `functions.php`, allow cors on API, ensure https on both sides and allow cors on digital ocean – that hosts both wordpress and API Viewing 2 replies - 1 through 2 (of 2 total) The topic ‘call of javascript function to external https url always blocked by cors’ is closed to new replies. ## Tags * [cross origin](https://wordpress.org/support/topic-tag/cross-origin/) * [javascript](https://wordpress.org/support/topic-tag/javascript/) * In: [Developing with WordPress](https://wordpress.org/support/forum/wp-advanced/) * 2 replies * 2 participants * Last reply from: [mhery](https://wordpress.org/support/users/mhery/) * Last activity: [6 years, 1 month ago](https://wordpress.org/support/topic/call-of-javascript-function-to-external-https-url-always-blocked-by-cors/#post-12622652) * Status: resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics