Cross-origin resource sharing (CORS)
Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be accessed from another domain outside the domain from which the first resource was served. CORS also relies on a mechanism by which browsers make a "preflight" request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request. For security reasons, browsers restrict cross-origin HTTP requests initiated from scripts. For example, fetch()
and XMLHttpRequest
follow the same-origin policy. This means that a web application using those APIs can only request resources from the same origin the application was loaded from unless the response from other origins includes the right CORS headers.
Resource types
- Invocations of
fetch()
orXMLHttpRequest
- Web Fonts (for cross-domain font usage in
@font-face
within CSS), so that servers can deploy TrueType fonts that can only be loaded cross-origin and used by websites that are permitted to do so
- WebGL textures
- Images/video frames drawn to a canvas using
drawImage()
- CSS shapes from images
- scripts
- iframes
Here are 37 public repositories matching this topic...
RoR based server for User app for Ambulance project. Ambulance app is "Uber for ambulance" app which helps in booking, tracking and payments of ambulance. It also provides ambulance drivers with own app for managing bookings.
-
Updated
May 22, 2017 - CSS
It is a play sample project for describing how to enable cross origin resource sharing setting in Playframework.
-
Updated
Jan 21, 2019 - CSS
Application de gestion du personnel et des congés - Pages php alimentées en Javascript
-
Updated
Jan 12, 2020 - CSS
A simple javascript application that generates a famous quote randomly.
-
Updated
Aug 11, 2020 - CSS
-
Updated
Aug 12, 2020 - CSS
OLX-Pakistan Progressive Web Application using JavaScript, Node, Express and MongoDB at the backend.
-
Updated
Aug 20, 2020 - CSS
Quote Generator - Fetch, Async/Await, Quote API, CORS. Randomly generates quotes when button is pushed.
-
Updated
Mar 8, 2021 - CSS
Instant messaging app with group and individual chat groups. Authentication though Google Sign in. Tech Stack: JavaScript, Node.js, Express.js, JWT, Bcrypt.js, Cloudinary, Cors, Dotenv, Mongoose, Uuid, Google auth library, Socket.io.
-
Updated
Mar 19, 2021 - CSS
Project datawarehouse web app
-
Updated
Jul 1, 2021 - CSS
A student enrollment system for ictak
-
Updated
Jan 8, 2022 - CSS
Messaging Application
-
Updated
Feb 25, 2022 - CSS
An Ecommerce website using ReactJS and test payment method using stripe
-
Updated
Jun 4, 2022 - CSS
Created by WHATWG, Matt Oshry, Brad Porter, Michael Bodell, Tellme Networks
Released May 2006
- Followers
- 12 followers
- Website
- fetch.spec.whatwg.org/#http-cors-protocol
- Wikipedia
- Wikipedia