book

Hands-On RESTful Web Services with ASP.NET Core 3

by Samuele Resca

December 2019

Intermediate to advanced

510 pages

11h 33m

English

Packt Publishing

Read now

Unlock full access

Content preview from Hands-On RESTful Web Services with ASP.NET Core 3

Enabling CORS in ASP.NET Core

Another critical aspect of security is to protect our APIs from CORS calls. By default, it is not possible to use client-side code to call services that are hosted on other domains, because scam websites may use a cross-origin call to get sensitive information about users. This security restriction is called the same-origin policy.

The restrictions on the same-origin policy act on HTTP calls using the following criteria:

The request is made from a different domain (for example, the site at example.com calls api.com).
The request is enabled from a different subdomain (for example, the website at example.com calls api.example.com).
The request is made from a different port (for example, the site at example.com ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Building RESTful Web Services with .NET Core

Gaurav Aroraa, Tadit Dash

ASP.NET Core and Vue.js

Devlin Basilan Duldulao

Pro ASP.NET Web API: HTTP Web Services in ASP.NET

Tugberk Ugurlu, Alexander Zeitler, Ali Kheyrollahi

Mastering ASP.NET Web API

Mithun Pattankar, Malendra Hurbuns

Publisher Resources

ISBN: 9781789537611Supplemental Content