Links about Cross-origin resource sharing - CORS

http://www.html5rocks.com/en/tutorials/cors/

http://enable-cors.org/server_cgi.html

http://stackoverflow.com/questions/10636611/how-does-access-control-allow-origin-header-work

http://stackoverflow.com/a/13400954/710446

https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS

http://serverfault.com/questions/384105/cross-origin-resource-sharing-cors-with-nginx-chrome
http://enable-cors.org/server_nginx.html

http://en.wikipedia.org/wiki/Same-origin_policy
http://en.wikipedia.org/wiki/Cross-origin_resource_sharing
http://stackoverflow.com/questions/23607901/cross-origin-request-blocked-on
http://benjaminhorn.io/code/setting-cors-cross-origin-resource-sharing-on-apache-with-correct-response-headers-allowing-everything-through/

Curl Testing

 # curl -I -X GET <a href="http://veeryapiperl.soupmode.com/api/posts">http://veeryapiperl.soupmode.com/api/posts</a>
HTTP/1.1 200 Accepted
Server: nginx/1.1.19
Date: Tue, 15 Sep 2015 23:00:54 GMT
Content-Type: application/json; charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, HEAD, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type

#nginx #programming #web #security

From JR's : articles
57 words - 1391 chars
created on
updated on - #
source - versions

Related articles
Plain Dealer newspaper downsizes due to changes from print to digital - Oct 08, 2013
Drupal security hole - October 2014 - Oct 31, 2014
Toledo area tech orgs - Sep 09, 2013
The web as a platform - May 27, 2014
Will Twitter eliminate its 140-character post limit? - Mar 16, 2015
more >>



A     A     A     A     A

© 2013-2017 JotHut - Online notebook

current date: Nov 15, 2024 - 12:44 p.m. EST