CanvasContext2D drawImage() issue [onload and CORS]












5















I am trying to paint an image on a canvas before I get its dataURL(), but the data returned is like empty.



When I check it in the console, I see there is a lot of A in the string : ("data:image/png;base64,iVBO..some random chars... bQhfoAAAAAAAAAA... a lot of A ...AAAASUVORK5CYII=")



When I try to append the canvas to the document, nothing is drawn either and I don't have any error thrown in the console.



What is the problem here ?



Here is my code : 



var img = new Image();

img.src = "http://somerandomWebsite/picture.png";

var canvas = document.createElement('canvas');

canvas.width = img.width;

canvas.height = img.height;

var context = canvas.getContext('2d');

context.drawImage(img, 0,0); // this doesn't seem to work

var dataURL = canvas.toDataURL(); // this will give me a lot of "A"    

doSomething(dataURL);


Also, when doing a quick refresh, the image gets drawn correctly onto the canvas but I've got an error message in the console and dataURL is empty.



The message in Firefox is : "SecurityError: The operation is insecure.",

in Chrome it is "Uncaught SecurityError: Failed to execute 'toDataURL' on 'HTMLCanvasElement': Tainted canvases may not be exported.",

and on IE I just get "SecurityError".



What does it mean ?






javascript canvas html5-canvas







share|improve this question

























  • This post is meant to be a canonical one for the 20 or so a week we get about this particular issue. Please let me know if it can be improved.

    – Kaiido
    Oct 1 '15 at 6:20











  • Isn't just the point of loading images before doing anything with them more relevant ? And if you think useful to refer to toDataURL, you should mention the (possible) CORS issue. Anyway +1 for the wiki idea / effort.

    – GameAlchemist
    Oct 1 '15 at 9:04













  • @GameAlchemist you're right, I tried to combine both issues, since they're really similar and often come in pair. I talked about the CORS issue in the answer. Don't know how search engines will deal with that though, maybe I should add the "canvas is tainted" message error into the question. Anyway, I asked that the question is converted to wiki too, this way, you'll be able to edit it.

    – Kaiido
    Oct 1 '15 at 14:02
















5















I am trying to paint an image on a canvas before I get its dataURL(), but the data returned is like empty.



When I check it in the console, I see there is a lot of A in the string : ("data:image/png;base64,iVBO..some random chars... bQhfoAAAAAAAAAA... a lot of A ...AAAASUVORK5CYII=")



When I try to append the canvas to the document, nothing is drawn either and I don't have any error thrown in the console.



What is the problem here ?



Here is my code : 



var img = new Image();

img.src = "http://somerandomWebsite/picture.png";

var canvas = document.createElement('canvas');

canvas.width = img.width;

canvas.height = img.height;

var context = canvas.getContext('2d');

context.drawImage(img, 0,0); // this doesn't seem to work

var dataURL = canvas.toDataURL(); // this will give me a lot of "A"    

doSomething(dataURL);


Also, when doing a quick refresh, the image gets drawn correctly onto the canvas but I've got an error message in the console and dataURL is empty.



The message in Firefox is : "SecurityError: The operation is insecure.",

in Chrome it is "Uncaught SecurityError: Failed to execute 'toDataURL' on 'HTMLCanvasElement': Tainted canvases may not be exported.",

and on IE I just get "SecurityError".



What does it mean ?






javascript canvas html5-canvas







share|improve this question

























  • This post is meant to be a canonical one for the 20 or so a week we get about this particular issue. Please let me know if it can be improved.

    – Kaiido
    Oct 1 '15 at 6:20











  • Isn't just the point of loading images before doing anything with them more relevant ? And if you think useful to refer to toDataURL, you should mention the (possible) CORS issue. Anyway +1 for the wiki idea / effort.

    – GameAlchemist
    Oct 1 '15 at 9:04













  • @GameAlchemist you're right, I tried to combine both issues, since they're really similar and often come in pair. I talked about the CORS issue in the answer. Don't know how search engines will deal with that though, maybe I should add the "canvas is tainted" message error into the question. Anyway, I asked that the question is converted to wiki too, this way, you'll be able to edit it.

    – Kaiido
    Oct 1 '15 at 14:02














5












5








5


3






I am trying to paint an image on a canvas before I get its dataURL(), but the data returned is like empty.



When I check it in the console, I see there is a lot of A in the string : ("data:image/png;base64,iVBO..some random chars... bQhfoAAAAAAAAAA... a lot of A ...AAAASUVORK5CYII=")



When I try to append the canvas to the document, nothing is drawn either and I don't have any error thrown in the console.



What is the problem here ?



Here is my code : 



var img = new Image();

img.src = "http://somerandomWebsite/picture.png";

var canvas = document.createElement('canvas');

canvas.width = img.width;

canvas.height = img.height;

var context = canvas.getContext('2d');

context.drawImage(img, 0,0); // this doesn't seem to work

var dataURL = canvas.toDataURL(); // this will give me a lot of "A"    

doSomething(dataURL);


Also, when doing a quick refresh, the image gets drawn correctly onto the canvas but I've got an error message in the console and dataURL is empty.



The message in Firefox is : "SecurityError: The operation is insecure.",

in Chrome it is "Uncaught SecurityError: Failed to execute 'toDataURL' on 'HTMLCanvasElement': Tainted canvases may not be exported.",

and on IE I just get "SecurityError".



What does it mean ?






javascript canvas html5-canvas







share|improve this question
















I am trying to paint an image on a canvas before I get its dataURL(), but the data returned is like empty.



When I check it in the console, I see there is a lot of A in the string : ("data:image/png;base64,iVBO..some random chars... bQhfoAAAAAAAAAA... a lot of A ...AAAASUVORK5CYII=")



When I try to append the canvas to the document, nothing is drawn either and I don't have any error thrown in the console.



What is the problem here ?



Here is my code : 



var img = new Image();

img.src = "http://somerandomWebsite/picture.png";

var canvas = document.createElement('canvas');

canvas.width = img.width;

canvas.height = img.height;

var context = canvas.getContext('2d');

context.drawImage(img, 0,0); // this doesn't seem to work

var dataURL = canvas.toDataURL(); // this will give me a lot of "A"    

doSomething(dataURL);


Also, when doing a quick refresh, the image gets drawn correctly onto the canvas but I've got an error message in the console and dataURL is empty.



The message in Firefox is : "SecurityError: The operation is insecure.",

in Chrome it is "Uncaught SecurityError: Failed to execute 'toDataURL' on 'HTMLCanvasElement': Tainted canvases may not be exported.",

and on IE I just get "SecurityError".



What does it mean ?






javascript canvas html5-canvas




javascript canvas html5-canvas






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 6 '15 at 17:30


























community wiki





3 revs
Kaiido














  • This post is meant to be a canonical one for the 20 or so a week we get about this particular issue. Please let me know if it can be improved.

    – Kaiido
    Oct 1 '15 at 6:20











  • Isn't just the point of loading images before doing anything with them more relevant ? And if you think useful to refer to toDataURL, you should mention the (possible) CORS issue. Anyway +1 for the wiki idea / effort.

    – GameAlchemist
    Oct 1 '15 at 9:04













  • @GameAlchemist you're right, I tried to combine both issues, since they're really similar and often come in pair. I talked about the CORS issue in the answer. Don't know how search engines will deal with that though, maybe I should add the "canvas is tainted" message error into the question. Anyway, I asked that the question is converted to wiki too, this way, you'll be able to edit it.

    – Kaiido
    Oct 1 '15 at 14:02



















  • This post is meant to be a canonical one for the 20 or so a week we get about this particular issue. Please let me know if it can be improved.

    – Kaiido
    Oct 1 '15 at 6:20











  • Isn't just the point of loading images before doing anything with them more relevant ? And if you think useful to refer to toDataURL, you should mention the (possible) CORS issue. Anyway +1 for the wiki idea / effort.

    – GameAlchemist
    Oct 1 '15 at 9:04













  • @GameAlchemist you're right, I tried to combine both issues, since they're really similar and often come in pair. I talked about the CORS issue in the answer. Don't know how search engines will deal with that though, maybe I should add the "canvas is tainted" message error into the question. Anyway, I asked that the question is converted to wiki too, this way, you'll be able to edit it.

    – Kaiido
    Oct 1 '15 at 14:02

















This post is meant to be a canonical one for the 20 or so a week we get about this particular issue. Please let me know if it can be improved.

– Kaiido
Oct 1 '15 at 6:20





This post is meant to be a canonical one for the 20 or so a week we get about this particular issue. Please let me know if it can be improved.

– Kaiido
Oct 1 '15 at 6:20













Isn't just the point of loading images before doing anything with them more relevant ? And if you think useful to refer to toDataURL, you should mention the (possible) CORS issue. Anyway +1 for the wiki idea / effort.

– GameAlchemist
Oct 1 '15 at 9:04







Isn't just the point of loading images before doing anything with them more relevant ? And if you think useful to refer to toDataURL, you should mention the (possible) CORS issue. Anyway +1 for the wiki idea / effort.

– GameAlchemist
Oct 1 '15 at 9:04















@GameAlchemist you're right, I tried to combine both issues, since they're really similar and often come in pair. I talked about the CORS issue in the answer. Don't know how search engines will deal with that though, maybe I should add the "canvas is tainted" message error into the question. Anyway, I asked that the question is converted to wiki too, this way, you'll be able to edit it.

– Kaiido
Oct 1 '15 at 14:02





@GameAlchemist you're right, I tried to combine both issues, since they're really similar and often come in pair. I talked about the CORS issue in the answer. Don't know how search engines will deal with that though, maybe I should add the "canvas is tainted" message error into the question. Anyway, I asked that the question is converted to wiki too, this way, you'll be able to edit it.

– Kaiido
Oct 1 '15 at 14:02












1 Answer
1






active

oldest

votes


















5














You have to wait that your image has loaded before you can paint it on the canvas.



To do so, simply use the load event handler of your <img> element : 



// create a new image

var img = new Image();

// declare a function to call once the image has loaded

img.onload = function(){

  var canvas = document.createElement('canvas');

  canvas.width = img.width;

  canvas.height = img.height;

  var context = canvas.getContext('2d');

  context.drawImage(img, 0,0);

  var dataURL = canvas.toDataURL();

  // now you can do something with the dataURL

  doSomething(dataURL);

}

// now set the image's src

img.src = "http://somerandomWebsite/picture.png";


Also, for the canvas' context.toDataURL() and context.getImageData to work properly, you have to get your image resource in a cross-origin compliant way, otherwise the canvas is "tainted" which means that any method to get pixels data will be blocked.




  • If your image comes from the same server, no problem.

  • If your image is served from an external server, be sure that it allows yours in its cross-origin headers and set the img.crossOrigin to "use-credentials".

  • If the server does allow anonymous requests, you can set the img.crossOrigin to "anonymous".


Nota Bene : CORS header is sent by the server, the cross-origin attribute will only let it know that you want to use CORS to get the image data, in no way you can circumvent it if the server is not set properly.

Also some UserAgents (IE & Safari) still haven't implemented this attribute.



Edge Case : If some of your images are from your server and some are from a CORS compliant one, then you may want to use the onerror event handler which should fire if you set the cross-origin attribute to "anonymous" on a non CORS server. 



function corsError(){

  this.crossOrigin='';

  this.src='';

  this.removeEventListener('error', corsError, false);

} 

img.addEventListener('error', corsError, false);





share|improve this answer

























    Your Answer






    StackExchange.ifUsing("editor", function () {
    StackExchange.using("externalEditor", function () {
    StackExchange.using("snippets", function () {
    StackExchange.snippets.init();
    });
    });
    }, "code-snippets");

    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "1"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    autoActivateHeartbeat: false,
    convertImagesToLinks: true,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: 10,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














    draft saved

    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f32880641%2fcanvascontext2d-drawimage-issue-onload-and-cors%23new-answer', 'question_page');
    }
    );

    Post as a guest















    Required, but never shown

























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    5














    You have to wait that your image has loaded before you can paint it on the canvas.



    To do so, simply use the load event handler of your <img> element : 



    // create a new image
    
var img = new Image();
    
// declare a function to call once the image has loaded
    
img.onload = function(){
    
  var canvas = document.createElement('canvas');
    
  canvas.width = img.width;
    
  canvas.height = img.height;
    
  var context = canvas.getContext('2d');
    
  context.drawImage(img, 0,0);
    
  var dataURL = canvas.toDataURL();
    
  // now you can do something with the dataURL
    
  doSomething(dataURL);
    
}
    
// now set the image's src
    
img.src = "http://somerandomWebsite/picture.png";


    Also, for the canvas' context.toDataURL() and context.getImageData to work properly, you have to get your image resource in a cross-origin compliant way, otherwise the canvas is "tainted" which means that any method to get pixels data will be blocked.




    • If your image comes from the same server, no problem.

    • If your image is served from an external server, be sure that it allows yours in its cross-origin headers and set the img.crossOrigin to "use-credentials".

    • If the server does allow anonymous requests, you can set the img.crossOrigin to "anonymous".


    Nota Bene : CORS header is sent by the server, the cross-origin attribute will only let it know that you want to use CORS to get the image data, in no way you can circumvent it if the server is not set properly.

    Also some UserAgents (IE & Safari) still haven't implemented this attribute.



    Edge Case : If some of your images are from your server and some are from a CORS compliant one, then you may want to use the onerror event handler which should fire if you set the cross-origin attribute to "anonymous" on a non CORS server. 



    function corsError(){
    
  this.crossOrigin='';
    
  this.src='';
    
  this.removeEventListener('error', corsError, false);
    
} 
    
img.addEventListener('error', corsError, false);





    share|improve this answer






























      5














      You have to wait that your image has loaded before you can paint it on the canvas.



      To do so, simply use the load event handler of your <img> element : 



      // create a new image
      
var img = new Image();
      
// declare a function to call once the image has loaded
      
img.onload = function(){
      
  var canvas = document.createElement('canvas');
      
  canvas.width = img.width;
      
  canvas.height = img.height;
      
  var context = canvas.getContext('2d');
      
  context.drawImage(img, 0,0);
      
  var dataURL = canvas.toDataURL();
      
  // now you can do something with the dataURL
      
  doSomething(dataURL);
      
}
      
// now set the image's src
      
img.src = "http://somerandomWebsite/picture.png";


      Also, for the canvas' context.toDataURL() and context.getImageData to work properly, you have to get your image resource in a cross-origin compliant way, otherwise the canvas is "tainted" which means that any method to get pixels data will be blocked.




      • If your image comes from the same server, no problem.

      • If your image is served from an external server, be sure that it allows yours in its cross-origin headers and set the img.crossOrigin to "use-credentials".

      • If the server does allow anonymous requests, you can set the img.crossOrigin to "anonymous".


      Nota Bene : CORS header is sent by the server, the cross-origin attribute will only let it know that you want to use CORS to get the image data, in no way you can circumvent it if the server is not set properly.

      Also some UserAgents (IE & Safari) still haven't implemented this attribute.



      Edge Case : If some of your images are from your server and some are from a CORS compliant one, then you may want to use the onerror event handler which should fire if you set the cross-origin attribute to "anonymous" on a non CORS server. 



      function corsError(){
      
  this.crossOrigin='';
      
  this.src='';
      
  this.removeEventListener('error', corsError, false);
      
} 
      
img.addEventListener('error', corsError, false);





      share|improve this answer




























        5












        5








        5







        You have to wait that your image has loaded before you can paint it on the canvas.



        To do so, simply use the load event handler of your <img> element : 



        // create a new image
        
var img = new Image();
        
// declare a function to call once the image has loaded
        
img.onload = function(){
        
  var canvas = document.createElement('canvas');
        
  canvas.width = img.width;
        
  canvas.height = img.height;
        
  var context = canvas.getContext('2d');
        
  context.drawImage(img, 0,0);
        
  var dataURL = canvas.toDataURL();
        
  // now you can do something with the dataURL
        
  doSomething(dataURL);
        
}
        
// now set the image's src
        
img.src = "http://somerandomWebsite/picture.png";


        Also, for the canvas' context.toDataURL() and context.getImageData to work properly, you have to get your image resource in a cross-origin compliant way, otherwise the canvas is "tainted" which means that any method to get pixels data will be blocked.




        • If your image comes from the same server, no problem.

        • If your image is served from an external server, be sure that it allows yours in its cross-origin headers and set the img.crossOrigin to "use-credentials".

        • If the server does allow anonymous requests, you can set the img.crossOrigin to "anonymous".


        Nota Bene : CORS header is sent by the server, the cross-origin attribute will only let it know that you want to use CORS to get the image data, in no way you can circumvent it if the server is not set properly.

        Also some UserAgents (IE & Safari) still haven't implemented this attribute.



        Edge Case : If some of your images are from your server and some are from a CORS compliant one, then you may want to use the onerror event handler which should fire if you set the cross-origin attribute to "anonymous" on a non CORS server. 



        function corsError(){
        
  this.crossOrigin='';
        
  this.src='';
        
  this.removeEventListener('error', corsError, false);
        
} 
        
img.addEventListener('error', corsError, false);





        share|improve this answer















        You have to wait that your image has loaded before you can paint it on the canvas.



        To do so, simply use the load event handler of your <img> element : 



        // create a new image
        
var img = new Image();
        
// declare a function to call once the image has loaded
        
img.onload = function(){
        
  var canvas = document.createElement('canvas');
        
  canvas.width = img.width;
        
  canvas.height = img.height;
        
  var context = canvas.getContext('2d');
        
  context.drawImage(img, 0,0);
        
  var dataURL = canvas.toDataURL();
        
  // now you can do something with the dataURL
        
  doSomething(dataURL);
        
}
        
// now set the image's src
        
img.src = "http://somerandomWebsite/picture.png";


        Also, for the canvas' context.toDataURL() and context.getImageData to work properly, you have to get your image resource in a cross-origin compliant way, otherwise the canvas is "tainted" which means that any method to get pixels data will be blocked.




        • If your image comes from the same server, no problem.

        • If your image is served from an external server, be sure that it allows yours in its cross-origin headers and set the img.crossOrigin to "use-credentials".

        • If the server does allow anonymous requests, you can set the img.crossOrigin to "anonymous".


        Nota Bene : CORS header is sent by the server, the cross-origin attribute will only let it know that you want to use CORS to get the image data, in no way you can circumvent it if the server is not set properly.

        Also some UserAgents (IE & Safari) still haven't implemented this attribute.



        Edge Case : If some of your images are from your server and some are from a CORS compliant one, then you may want to use the onerror event handler which should fire if you set the cross-origin attribute to "anonymous" on a non CORS server. 



        function corsError(){
        
  this.crossOrigin='';
        
  this.src='';
        
  this.removeEventListener('error', corsError, false);
        
} 
        
img.addEventListener('error', corsError, false);






        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Oct 5 '15 at 5:21


























        community wiki





        3 revs, 2 users 98%
        Kaiido

































            draft saved

            draft discarded




















































            Thanks for contributing an answer to Stack Overflow!


            • Please be sure to answer the question. Provide details and share your research!

            But avoid



            • Asking for help, clarification, or responding to other answers.

            • Making statements based on opinion; back them up with references or personal experience.


            To learn more, see our tips on writing great answers.




            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f32880641%2fcanvascontext2d-drawimage-issue-onload-and-cors%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            Popular posts from this blog

            MongoDB - Not Authorized To Execute Command

            Image
            .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box; } 0 I have successfully enabled authorization on MongoDB and I have created an account on the admin database and then I created an account for my database called test. The following connection string to connect to my test database works successfully: mongo --host 192.168.17.52 --port 27017 -u user1 -p password --authenticationDatabase test Only problem I have now is, I cannot execute commands such as: show dbs. I get the following error when I try to do so: "errmsg" : "not authorized on admin to execute command { listDatabases: 1.0, lsid: { id: UUID("a1d5bc0d-bc58-485e-b232-270758a89455") }, $db: "admin...
            Read more

            How to fix TextFormField cause rebuild widget in Flutter

            Image
            .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box; } 0 I've got the same issue at #9280. I tried all solutions from that topic with/without GlobalKey for Scaffold and Form but the problem wasn't fixed. I tried to build a authentication form with login and signup. But the keyboard doesn't show when I tap the TextFormField at the first time. Then I try to input some letter from physical keyboard, the widget is rebuilt. Like this: login screen Nothing to be log when I run flutter run --verbose, so I logged manually. Every tapping on field, the widget called dispose -> init -> build. [√] Flutter (Channel beta, v1.0.0, on Microsoft Windows [Version 10.0.17763.195], ...
            Read more

            Npm cannot find a required file even through it is in the searched directory

            Image
            up vote 0 down vote favorite I got that error: users-Air:pdfuploader user$ npm run start client@0.1.0 start /Users/user/Documents/pdfuploader react-scripts start Could not find a required file. Name: index.html Searched in: /Users/user/Documents/pdfuploader/public npm ERR! code ELIFECYCLE npm ERR! errno 1 npm ERR! client@0.1.0 start: `react-scripts start` npm ERR! Exit status 1 npm ERR! npm ERR! Failed at the client@0.1.0 start script. npm ERR! This is probably not a problem with npm. There is likely additional logging output above. npm ERR! A complete log of this run can be found in: npm ERR! /Users/user/.npm/_logs/2018-11-19T10_19_14_555Z-debug.log users-Air:pdfuploader user$ And the file is in /Users/user/Documents/pdfuploader/public as you can see in my github repository: https://github.c...
            Read more