我的网站有两个问题:
1) 混合内容:“ https://www.mywebsite.com/ ”上的页面通过 HTTPS 加载,但请求了不安全的字体“ http://demo.kallyas.net/ares-furniture-interior-design/wp -content/uploads/sites/6/2016/03/montserrat-light-webfont.woff '。此内容也应通过 HTTPS 提供。
2) 在“ https://kallyas.net/demo-ares/furniture/wp-content/uploads/sites/6/2016/03/montserrat-light-webfont.woff ”处访问字体来自“ https://” www.mywebsite.com ' 已被 CORS 政策阻止:
请求的资源上不存在“Access-Control-Allow-Origin”标头。
我试过了:
<IfModule mod_rewrite.c>
Header set Access-Control-Allow-Origin "*"
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
&
Header set Access-Control-Allow-Origin "*"
Header set Access-Control-Allow-Methods "GET,PUT,POST,DELETE"
Header set Access-Control-Allow-Headers "Content-Type, Authorization"
wordpress ×1