Statements (56)
| Predicate | Object |
|---|---|
| gptkbp:instance_of |
gptkb:standard
|
| gptkbp:allows |
Access control for web applications
|
| gptkbp:can_be_configured_for |
Server settings
|
| gptkbp:can_be_restricted_by |
Access-Control-Allow-Methods header
|
| gptkbp:can_include |
Credentials in requests
|
| gptkbp:can_lead_to |
Security vulnerabilities if misconfigured
|
| gptkbp:defines |
A mechanism that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served.
|
| gptkbp:enables |
Cross-origin requests
|
| gptkbp:feature |
Web browsers
HTTP protocol |
| https://www.w3.org/2000/01/rdf-schema#label |
CORS
|
| gptkbp:is_a_solution_for |
Cross-origin issues
Cross-origin resource sharing issues |
| gptkbp:is_a_subject_of |
Web development discussions
|
| gptkbp:is_affected_by |
Same-origin policy
|
| gptkbp:is_countered_by |
Proxy servers
|
| gptkbp:is_defined_by |
gptkb:W3_C
|
| gptkbp:is_essential_for |
Microservices architecture
Single Page Applications (SPAs) Web application security |
| gptkbp:is_implemented_in |
Content Delivery Networks (CDNs)
HTTP response headers Browsers Java Script frameworks |
| gptkbp:is_managed_by |
Web server configuration
|
| gptkbp:is_often_configured_with |
Access-Control-Allow-Headers header
|
| gptkbp:is_often_seen_in |
Same-origin policy
|
| gptkbp:is_often_used_in |
AJAX calls
|
| gptkbp:is_part_of |
Web development best practices
Modern web architecture API security measures |
| gptkbp:is_protected_by |
Cross-site request forgery (CSRF) attacks
|
| gptkbp:is_related_to |
gptkb:JSONP
Web security standards |
| gptkbp:is_standardized_by |
Web interoperability
|
| gptkbp:is_supported_by |
RESTful services
Most modern browsers |
| gptkbp:is_tested_for |
Browser developer tools
|
| gptkbp:is_used_in |
Web APIs
|
| gptkbp:is_used_to |
Share resources across different domains
|
| gptkbp:is_utilized_by |
Cloud services
|
| gptkbp:mechanism_of_action |
Controlling resource access
|
| gptkbp:origin |
Web security model
|
| gptkbp:requires |
gptkb:Web
Cross-domain AJAX requests Preflight requests Third-party API access |
| gptkbp:specifies |
gptkb:RFC_6454
Access-Control-Allow-Origin header |
| gptkbp:supports |
GET, POST, PUT, DELETE methods
|
| gptkbp:uses |
HTTP headers
|
| gptkbp:bfsParent |
gptkb:API
gptkb:Amazon_Web_Services gptkb:Fetch_API gptkb:Workers |
| gptkbp:bfsLayer |
4
|