CorsPolicy

import type { CorsPolicy } from "https://googleapis.deno.dev/v1/compute:v1.ts";

The specification for allowing client-side cross-origin requests. For more information about the W3C recommendation for cross-origin resource sharing (CORS), see Fetch API Living Standard.

interface CorsPolicy {

allowCredentials?: boolean;

allowHeaders?: string[];

allowMethods?: string[];

allowOriginRegexes?: string[];

allowOrigins?: string[];

disabled?: boolean;

exposeHeaders?: string[];

maxAge?: number;

}

§Properties

allowCredentials?: boolean

[src]

In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header. Default is false.

allowHeaders?: string[]

[src]

Specifies the content for the Access-Control-Allow-Headers header.

allowMethods?: string[]

[src]

Specifies the content for the Access-Control-Allow-Methods header.

allowOriginRegexes?: string[]

[src]

Specifies a regular expression that matches allowed origins. For more information, see regular expression syntax. An origin is allowed if it matches either an item inallowOrigins or an item inallowOriginRegexes. Regular expressions can only be used when the loadBalancingScheme is set to INTERNAL_SELF_MANAGED.

allowOrigins?: string[]

[src]

Specifies the list of origins that is allowed to do CORS requests. An origin is allowed if it matches either an item inallowOrigins or an item inallowOriginRegexes.

disabled?: boolean

[src]

If true, disables the CORS policy. The default value is false, which indicates that the CORS policy is in effect.

exposeHeaders?: string[]

[src]

Specifies the content for the Access-Control-Expose-Headers header.

maxAge?: number

[src]

Specifies how long results of a preflight request can be cached in seconds. This field translates to the Access-Control-Max-Age header.