CORS in Action

Chapter 3. Handling CORS requests

This chapter covers

How to set up the book’s sample application
What a CORS request looks like from a server’s perspective
What an origin is
How to respond to CORS requests using the Access-Control-Allow-Origin header

Suppose you’re the owner of a blog that you programmed yourself. To keep the site scalable, you’ve separated the blog data from the HTML code by introducing an API. The blog page queries the API to load the blog posts, then displays those posts on the page.

As your site becomes more popular, some of your more tech-savvy readers ask if they can use your data to create JavaScript mashups, or embed some of your data on their site by creating a JavaScript widget. They can do this now by screen-scraping ...

Get CORS in Action now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CORS in Action by Monsur Hossain

Chapter 3. Handling CORS requests

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly