The following Cross-Origin Resource Sharing settings can be configured in structr.conf:

Access-Control-Max-Agehttps://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS#Access-Control-Max-Age
Access-Control-Allow-Methodshttps://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS#Access-Control-Allow-Methods
Access-Control-Allow-Headers https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS#Access-Control-Allow-Headers
Access-Control-Allow-Credentials https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS#Access-Control-Allow-Credentials
Access-Control-Expose-Headers https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS#Access-Control-Expose-Headers

structr.conf

#############################################################################
# Cross Origin Resource Sharing configuration
#############################################################################
# This section configures the HTTP headers sent by Structr to control cross
# origin resource sharing, see http://www.w3.org/TR/cors.
#

#access.control.max.age = 3600
#access.control.allow.methods = GET,OPTIONS
#access.control.allow.headers = Content-Type,Accept,Content-Encoding,Location
#access.control.allow.credentials = false
#access.control.expose.headers = Location

For details about CORS see https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS and https://en.wikipedia.org/wiki/Cross-origin_resource_sharing.

Graph-Browser

Related Articles
About this article
Last change 2017-08-09
Topics Structr 2.0