cross-origin resource sharing
GPTKB entity
Statements (27)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:standard
|
gptkbp:abbreviation |
gptkb:CORS
|
gptkbp:appliesTo |
web browsers
web servers |
gptkbp:category |
gptkb:HTTP
web development web security |
gptkbp:definedIn |
gptkb:W3C
|
gptkbp:enables |
cross-domain AJAX requests
|
gptkbp:headerFile |
Access-Control-Allow-Origin
Origin Vary Access-Control-Allow-Credentials Access-Control-Allow-Headers Access-Control-Allow-Methods Access-Control-Expose-Headers Access-Control-Max-Age |
https://www.w3.org/2000/01/rdf-schema#label |
cross-origin resource sharing
|
gptkbp:introducedIn |
2009
|
gptkbp:purpose |
allow restricted resources on a web page to be requested from another domain
|
gptkbp:relatedTo |
gptkb:same-origin_policy
|
gptkbp:riskFactor |
potential for cross-site request forgery
potential for data leakage |
gptkbp:specifies |
https://www.w3.org/TR/cors/
|
gptkbp:uses |
HTTP headers
|
gptkbp:bfsParent |
gptkb:JSON-P
|
gptkbp:bfsLayer |
7
|