Cross-origin resource sharing (CORS)
Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be accessed from another domain outside the domain from which the first resource was served. CORS also relies on a mechanism by which browsers make a "preflight" request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request. For security reasons, browsers restrict cross-origin HTTP requests initiated from scripts. For example, fetch()
and XMLHttpRequest
follow the same-origin policy. This means that a web application using those APIs can only request resources from the same origin the application was loaded from unless the response from other origins includes the right CORS headers.
Resource types
- Invocations of
fetch()
orXMLHttpRequest
- Web Fonts (for cross-domain font usage in
@font-face
within CSS), so that servers can deploy TrueType fonts that can only be loaded cross-origin and used by websites that are permitted to do so
- WebGL textures
- Images/video frames drawn to a canvas using
drawImage()
- CSS shapes from images
- scripts
- iframes
Here are 103 public repositories matching this topic...
Golang web toolbox for API and static website including HTTP server, middlewares, JWT, CORS, OPA, Cookies, Prometheus exporter, Rate Limiter compatible with Go standards and dozens of Go routers
-
Updated
Jun 10, 2024 - Go
-
Updated
Jun 4, 2024 - Go
An experimental CORS middleware library for Go. Consider using jub0bs/cors (its successor) instead.
-
Updated
May 28, 2024 - Go
perhaps the best CORS middleware library for Go
-
Updated
May 28, 2024 - Go
Free-to-use CORS proxy that adds CORS headers to your requests. This service allows you to bypass the Same-Origin Policy and make requests to external APIs without facing CORS issues.
-
Updated
May 18, 2024 - Go
A simple dev HTTP/HTTPS reverse proxy for replacing CORS headers.
-
Updated
Apr 21, 2024 - Go
URL Shortener Application developed using Golang Programming language
-
Updated
Mar 10, 2024 - Go
基于 gin+gorm+redis+mysql 读写分离的电子商城,包括 JWT 鉴权,CORS跨域,AES 对称加密,引入ELK体系方便日志查看,jaeger进行trace查看,skywalking进行检测,使用docker容器化部署
-
Updated
Mar 3, 2024 - Go
Package cors is a middleware that provides the Cross-Origin Resource Sharing for Flamego
-
Updated
Mar 1, 2024 - Go
Attendance Management System --devtron
-
Updated
Feb 22, 2024 - Go
xkcd api with cors
-
Updated
Feb 19, 2024 - Go
Cross-origin resource sharing (CORS) support for Connect
-
Updated
Jan 24, 2024 - Go
Go web development extension over gorilla/mux and gorm
-
Updated
Jan 17, 2024 - Go
CORS Testing Utility - Test for SIMPLE Cors and Preflight Request CORS, Test Support for Methods and Headers Against Origin
-
Updated
Dec 28, 2023 - Go
Created by WHATWG, Matt Oshry, Brad Porter, Michael Bodell, Tellme Networks
Released May 2006
- Followers
- 12 followers
- Website
- fetch.spec.whatwg.org/#http-cors-protocol
- Wikipedia
- Wikipedia