Created
February 7, 2022 23:36
-
-
Save mrkmiller/84aa63208458f4354b96b17b4853ad7d to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| parameters: | |
| # Configure Cross-Site HTTP requests (CORS). | |
| # Read https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS | |
| # for more information about the topic in general. | |
| # Note: By default the configuration is disabled. | |
| cors.config: | |
| enabled: true | |
| # Specify allowed headers, like 'x-allowed-header'. | |
| allowedHeaders: ['x-csrf-token', 'authorization', 'content-type', 'accept', 'origin', 'x-requested-with'] | |
| # Specify allowed request methods, specify ['*'] to allow all possible ones. | |
| allowedMethods: ['GET'] | |
| # Configure requests allowed from specific origins. | |
| allowedOrigins: ['https://mysite.com'] | |
| # Sets the Access-Control-Expose-Headers header. | |
| exposedHeaders: true | |
| # Sets the Access-Control-Max-Age header. | |
| maxAge: false | |
| # Sets the Access-Control-Allow-Credentials header. | |
| supportsCredentials: false |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment