Jump to: navigation, search

Web Engagement Cluster:web:cors-allowedOrigins

(Rpfeiffer used the OptionEdit action.)
Line 1: Line 1:
 
{{PubOption
 
{{PubOption
 
|hidden=false
 
|hidden=false
|default=*
+
|default=*
 
|valid=See the explanation in the description.
 
|valid=See the explanation in the description.
 
|takeseffect=After server restart
 
|takeseffect=After server restart
Line 8: Line 8:
 
{{DraftOption
 
{{DraftOption
 
|hidden=false
 
|hidden=false
|default=*
+
|default=*
 
|valid=See the explanation in the description.
 
|valid=See the explanation in the description.
 
|takeseffect=After server restart
 
|takeseffect=After server restart

Revision as of 00:53, March 22, 2018


View in ref guide.

Edit this option          Publish this option          Clear draft content


Published Option

cors.allowedOrigins

Default Value: *
Valid Values: See the explanation in the description.
Changes Take Effect: After server restart


A comma-separated list of origins that are allowed to access the resources. The default value is *, meaning all origins. If an allowed origin contains one or more * characters (for example http://*.domain.com), then * characters are converted to .*, . characters are escaped to \., and the resulting allowed origin is interpreted as a regular expression. Allowed origins can therefore be more complex expressions such as https?://*.domain.[a-z]{3}, which matches either http or https, multiple subdomains, and any 3 letter top-level domain, such as .com, .net, or .org.

Draft Option

No draft option

Comments or questions about this documentation? Contact us for support!