Cross-origin resource sharing (CORS)
Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be accessed from another domain outside the domain from which the first resource was served. CORS also relies on a mechanism by which browsers make a "preflight" request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request. For security reasons, browsers restrict cross-origin HTTP requests initiated from scripts. For example, fetch()
and XMLHttpRequest
follow the same-origin policy. This means that a web application using those APIs can only request resources from the same origin the application was loaded from unless the response from other origins includes the right CORS headers.
Resource types
- Invocations of
fetch()
orXMLHttpRequest
- Web Fonts (for cross-domain font usage in
@font-face
within CSS), so that servers can deploy TrueType fonts that can only be loaded cross-origin and used by websites that are permitted to do so
- WebGL textures
- Images/video frames drawn to a canvas using
drawImage()
- CSS shapes from images
- scripts
- iframes
Here are 4,305 public repositories matching this topic...
JSONP (or JSON with Padding) for Haxe
-
Updated
Dec 28, 2015 - Haxe
CORS middleware implementation with emphasis on configurability of dynamic origins.
-
Updated
Nov 4, 2016 - JavaScript
The Stock market simulation system project - DATABASE MANAGEMENT SYSTEMS - CS542
-
Updated
Feb 16, 2017 - Java
利用聚合数据的问答机器人完成对话,建立中间服务器实现ajax的跨域通信,界面模仿微信。有移动端适配(dev分支)和响应式布局(master分支)两个版本
-
Updated
Feb 21, 2017 - JavaScript
Simple HTML5 Canvas game ported to Scala,and cross compiled targeting the browser's HTML5 Canvas.
-
Updated
Mar 3, 2017 - Scala
-
Updated
Mar 11, 2017
Demo SP
-
Updated
Mar 19, 2017 - JavaScript
Created by WHATWG, Matt Oshry, Brad Porter, Michael Bodell, Tellme Networks
Released May 2006
- Followers
- 12 followers
- Website
- fetch.spec.whatwg.org/#http-cors-protocol
- Wikipedia
- Wikipedia