CORS Headers Guide

Generate CORS response headers with presets for common configurations

All data stays in your browser

Presets

Access-Control-Allow-Origin

Access-Control-Allow-Methods

GETPOSTPUTDELETEPATCHOPTIONS

Access-Control-Allow-Headers

Content-TypeAuthorizationAcceptX-Requested-WithX-API-Key

Access-Control-Allow-Credentials

Access-Control-Max-Age (seconds)

Access-Control-Expose-Headers

Generated Headers

Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, Accept
Access-Control-Max-Age: 3600
Access-Control-Expose-Headers: X-Request-Id