Requesting the HTTPS interface in Postman is successful, the requesting HTTPS interface in the front-end page is unresponsive, and an error is reported in the console: net::err_cert_authority_invalid

by 永夜 · 2025/05/14

浏览量： 1

1. The request for the HTTPS interface in Postman is successful, the request for the HTTPS interface in the front-end page is unresponsive, and an error is reported in the console: net::ERR_cert_authority_invalid. as shown in Figure 1

在 Postman 中请求 https 接口响应成功，在前端页面中请求 https 接口无响应，控制台中报错： net::ERR_CERT_AUTHORITY_INVALID

Figure 1

2. Reason: The browser does not trust the MKCERT certificate, because it is issued by the local CA (Certificate Authority), and is not trusted by the operating system or the browser by default. Check if the CA certificate is installed using the following command: Confirm that it is not installed. as shown in Figure 2

原因：浏览器不信任 mkcert 证书，因为它是由本地 CA（Certificate Authority）签发的，并未被操作系统或浏览器默认信任。使用以下命令检查：CA 证书是否已经安装。确认未安装。

Figure 2


PS C:\wwwroot> certutil -store -user root "mkcert development CA"
root "受信任的根证书颁发机构"
CertUtil: -store 失败: 0x80090011 (-2146893807 NTE_NOT_FOUND)
CertUtil: 找不到对象。
PS C:\wwwroot>

3. Run certlm.msc (local computer certificate manager). Under Trusted Root Certificate Authority, check for MKCERT Development CA certificates. does not exist. as shown in Figure 3

运行 certlm.msc（本地计算机证书管理器）。在受信任的根证书颁发机构下，检查是否有 mkcert development CA 证书。不存在

Figure 3

4. Import the C:\Users\Wangqiang\AppData\Local\MkCert\Rootca.pem certificate to the trusted root certificate authority. as shown in Figure 4

$将 C:\Users\wangqiang\AppData\Local\mkcert\rootCA.pem 证书导入到受信任的根证书颁发机构$

Figure 4

5. Trust the CA certificate chrome / edge to enter chrome://settings/certificates. Select the Local Certificate tab – View the certificates imported from Windows to see if the CA certificates generated by MKCERT are included. Already included, restart the browser. as shown in Figure 5

信任 CA 证书 Chrome / Edge 进入 chrome://settings/certificates。选择 “本地证书” 选项卡 - 查看从 Windows 导入的证书，查看是否包含 mkcert 生成的 CA 证书。已经包含，重启浏览器

Figure 5

6. Request again, error: access to xmlHttpRequest athttps://api.apply.local/sms/get-login-verify-codefrom originhttps://console.apply.localHas Been Blocked by Cors Policy: Noaccess-control-allow-originHeader is present on the requested resource.

再次请求，报错：Access to XMLHttpRequest at 'https://api.apply.local/sms/get-login-verify-code' from origin 'https://console.apply.local' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Figure 6

7. From the source”https://console.apply.local”访问“https://api.apply.local/sms/get-login-verify-code”处的The XMLHttpRequest has been blocked by the CORS policy: the “Access-Control-Allow-Origin” header does not exist on the requested resource. as shown in Figure 7

从来源“https://console.apply.local”访问“https://api.apply.local/sms/get-login-verify-code”处的 XMLHttpRequest 已被 CORS 策略阻止：请求的资源上不存在“Access-Control-Allow-Origin”标头。

Figure 7

8. Set the response on the server access-control-allow-originhttps://console.apply.local, no more errors are reported in the console. as shown in Figure 8

Requesting the HTTPS interface in Postman is successful, the requesting HTTPS interface in the front-end page is unresponsive, and an error is reported in the console: net::err_cert_authority_invalid

You may also like...

Leave a Reply Cancel reply

Requesting the HTTPS interface in Postman is successful, the requesting HTTPS interface in the front-end page is unresponsive, and an error is reported in the console: net::err_cert_authority_invalid

You may also like...

The HDMI to VGA converter is already connected. But now the ThinkPad T570 still doesn’t detect other monitors

Mixed content causes website page confusion? A complete investigation and repair of an ISC project

Leave a Reply Cancel reply