<< Click to Display Table of Contents >> Navigation:  Getting Started > CORS

 

For developers of a browser-based solution, the service solves the Same-Origin policy by supporting Cross Origin Resource Sharing.

 

This is implemented in the standard way via the OPTIONS verb, returning code 200 along with headers  'Access-Control-Allow-Origin: *' and 'Access-Control-Allow-Headers: X-Requested-With'.

 

Additionally the service includes Access-Control-Max-Age: 600 to allow preflight requests to be cached for a maximum of 10 minutes.