Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

CORS - When to return `Access-Control-Expose-Headers`

Tags:

rest

http

cors

Should the Access-Control-Expose-Headers header field be returned along with an entity in response to an 'actual' request?

Or should it only be returned in response to a CORS preflight request?

Or both?

like image 400
Luke Puplett Avatar asked Feb 08 '16 14:02

Luke Puplett

1 Answers

The flowchart is such a good resource I wanted to repost it here in my own answer.

Image from: http://www.html5rocks.com/en/tutorials/cors/#toc-cors-server-flowchart

CORS flowchart

like image 157
Luke Puplett Avatar answered Oct 06 '22 22:10

Luke Puplett
Sign in to Comment

Related questions

Email Parsing Cloud Service [closed]
Need to write a RESTful JSON service in Java
Representational State Transfer (REST) in Common Lisp
REST and JSON - converting string to JSON array
How do you find the error generated by a backbone fetch
Slim framework - Call external API
RESTful way to ask for subset of a resource
derbyjs for REST API
REST API nested resources should be handled by which controller?
How to load test a rest-ful web service through JMeter or any other tool?
POST or GET in a search form?
How to parse / deserialize JSON returned from rest service in C#
Check null for HttpWebResponse
Difference between XPOST and XPUT
The message with To '...' cannot be processed at the receiver, due to an AddressFilter mismatch at the EndpointDispatcher
Jira REST API: create issue linked to another one
In Python "requests" module, how do I check whether the server is down or 500?
null fields with Spring Boot REST controller and JSON
How do I use Custom Validations in Jersey
Preserving order in Java object to json with spring framework

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!