cross-origin resource sharing

GPTKB entity

Statements (27)
Predicate Object
gptkbp:instanceOf gptkb:standard
gptkbp:abbreviation gptkb:CORS
gptkbp:appliesTo web browsers
web servers
gptkbp:category gptkb:HTTP
web development
web security
gptkbp:definedIn gptkb:W3C
gptkbp:enables cross-domain AJAX requests
gptkbp:headerFile Access-Control-Allow-Origin
Origin
Vary
Access-Control-Allow-Credentials
Access-Control-Allow-Headers
Access-Control-Allow-Methods
Access-Control-Expose-Headers
Access-Control-Max-Age
https://www.w3.org/2000/01/rdf-schema#label cross-origin resource sharing
gptkbp:introducedIn 2009
gptkbp:purpose allow restricted resources on a web page to be requested from another domain
gptkbp:relatedTo gptkb:same-origin_policy
gptkbp:riskFactor potential for cross-site request forgery
potential for data leakage
gptkbp:specifies https://www.w3.org/TR/cors/
gptkbp:uses HTTP headers
gptkbp:bfsParent gptkb:JSON-P
gptkbp:bfsLayer 7