Revision as of 01:09, March 22, 2018 by Rpfeiffer (talk | contribs) (Rpfeiffer used the OptionPublish action.)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Web Engagement Cluster:web:cors-allowedOrigins


View in ref guide.

Edit this option          Publish this option          Clear draft content


Published Option

cors.allowedOrigins

Default Value: *
Valid Values: See the explanation in the description.
Changes Take Effect: After server restart


A comma-separated list of origins that are allowed to access the resources. The default value is *, meaning all origins. If an allowed origin contains one or more * characters (for example http://*.domain.com), then * characters are converted to .*, . characters are escaped to \., and the resulting allowed origin is interpreted as a regular expression. Allowed origins can therefore be more complex expressions such as https?://*.domain.[a-z]{3}, which matches either http or https, multiple subdomains, and any 3 letter top-level domain, such as .com, .net, or .org.

Draft Option

No draft option

This page was last edited on March 22, 2018, at 01:09.
Comments or questions about this documentation? Contact us for support!