10 Configuring CORS

This chapter covers

Defining CORS
Applying CORS configurations

In this chapter, we discuss cross-origin resource sharing (CORS) and how to apply it with Spring Security. First, what is CORS, and why should you care? The need for CORS stems from web applications. By default, browsers don’t allow requests made for any domain other than the one from which the site is loaded. For example, if you access the site from example.com, the browser won’t let the site make requests to api.example.com. Figure 10.1 illustrates this concept.

Figure 10.1 Cross-origin resource sharing (CORS). When accessed from example.com, the website cannot ...

Get Spring Security in Action, Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Spring Security in Action, Second Edition by Laurentiu Spilca

10 Configuring CORS

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly