CORS Error in Angular – Quick Fix Guide

In this tutorial, you will clear the concept of CORS error in Angular

What is a CORS Error?

CORS means Cross-Origin Resource Sharing. A CORS error happens when a browser blocks a request from your Angular application to another domain.

Example:


Angular App → http://localhost:4200
API Server → http://localhost:3000

Explanation:

The browser blocks the request.

You might see an error in the browser console.

Access to fetch at ‘http://api.example.com/users’ from origin ‘http://localhost:4200’ has been blocked by CORS policy.

Note: This means the server did not allow your Angular application to access the API.

There are many reasons why CORS errors happen in Angular

The server must allow requests from your frontend domain.

Example allowed origin:

Access-Control-Allow-Origin: http://localhost:4200

Note: If this header is missing, the browser blocks the request.

If the backend is not configured for CORS, Angular cannot call the API.

Example backend frameworks that require CORS setup:

Sometimes APIs require additional headers like:

Access-Control-Allow-Headers Access-Control-Allow-Methods

Note: If we did not use then request may fail.

There are many ways to fix CORS errors in Angular

Suppose, you are using Node.js as a backend


const cors = require("cors");
app.use(cors());

Example:


Access-Control-Allow-Origin: http://localhost:4200

Note: This allows only your Angular app to access the API.

Angular provides a proxy configuration to avoid CORS errors during development.

Firstly create proxy.conf.json


{
  "/api": {
    "target": "http://localhost:3000",
    "secure": false,
    "changeOrigin": true
  }
}

Now. update angular.json:


ng serve --proxy-config proxy.conf.json

Note: Now your API calls will work without CORS issues.