Error: Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response

Question

I am building my application in Angular 2 and Laravel 5.4. Angular2 is for client side and laravel 5.4 is for server side. I created APIs in laravel and requesting those API

Answer 1

The errormessage is clear, 'Authorization' header is not allowed by your backend. In your backend Laravel application you have to set a response header containing:

Access-Control-Allow-Headers : 'Content-Type', 'Authorization'

see further documentation here: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers