interface CorsRuleProperty
Language | Type name |
---|---|
.NET | Amazon.CDK.AWS.MediaStore.CfnContainer.CorsRuleProperty |
Go | github.com/aws/aws-cdk-go/awscdk/v2/awsmediastore#CfnContainer_CorsRuleProperty |
Java | software.amazon.awscdk.services.mediastore.CfnContainer.CorsRuleProperty |
Python | aws_cdk.aws_mediastore.CfnContainer.CorsRuleProperty |
TypeScript | aws-cdk-lib » aws_mediastore » CfnContainer » CorsRuleProperty |
A rule for a CORS policy.
You can add up to 100 rules to a CORS policy. If more than one rule applies, the service uses the first applicable rule listed.
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_mediastore as mediastore } from 'aws-cdk-lib';
const corsRuleProperty: mediastore.CfnContainer.CorsRuleProperty = {
allowedHeaders: ['allowedHeaders'],
allowedMethods: ['allowedMethods'],
allowedOrigins: ['allowedOrigins'],
exposeHeaders: ['exposeHeaders'],
maxAgeSeconds: 123,
};
Properties
Name | Type | Description |
---|---|---|
allowed | string[] | Specifies which headers are allowed in a preflight OPTIONS request through the Access-Control-Request-Headers header. |
allowed | string[] | Identifies an HTTP method that the origin that is specified in the rule is allowed to execute. |
allowed | string[] | One or more response headers that you want users to be able to access from their applications (for example, from a JavaScript XMLHttpRequest object). |
expose | string[] | One or more headers in the response that you want users to be able to access from their applications (for example, from a JavaScript XMLHttpRequest object). |
max | number | The time in seconds that your browser caches the preflight response for the specified resource. |
allowedHeaders?
Type:
string[]
(optional)
Specifies which headers are allowed in a preflight OPTIONS
request through the Access-Control-Request-Headers
header.
Each header name that is specified in Access-Control-Request-Headers
must have a corresponding entry in the rule. Only the headers that were requested are sent back.
This element can contain only one wildcard character (*).
allowedMethods?
Type:
string[]
(optional)
Identifies an HTTP method that the origin that is specified in the rule is allowed to execute.
Each CORS rule must contain at least one AllowedMethods
and one AllowedOrigins
element.
allowedOrigins?
Type:
string[]
(optional)
One or more response headers that you want users to be able to access from their applications (for example, from a JavaScript XMLHttpRequest
object).
Each CORS rule must have at least one AllowedOrigins
element. The string value can include only one wildcard character (), for example, http://.example.com. Additionally, you can specify only one wildcard character to allow cross-origin access for all origins.
exposeHeaders?
Type:
string[]
(optional)
One or more headers in the response that you want users to be able to access from their applications (for example, from a JavaScript XMLHttpRequest
object).
This element is optional for each rule.
maxAgeSeconds?
Type:
number
(optional)
The time in seconds that your browser caches the preflight response for the specified resource.
A CORS rule can have only one MaxAgeSeconds
element.