.net: Web API Enabling Cross-Origin Requests

We cannot call another doman with AJAX requests from our web page due to browser security. This type of restriction is called as same-origin policy, and prevents a malicious site from reading sentitive data from another site. However, sometimes you might want to let other sites call your web API.

For allow other sites to call your web api add following lines in your config file:-

<system.webServer>
<httpProtocol>
<customHeaders>

<add name="Access-Control-Allow-Origin" value="*" />
</customHeaders>
</httpProtocol>
</system.webServer>

.net

Thursday, 7 July 2016

Web API Enabling Cross-Origin Requests

We cannot call another doman with AJAX requests from our web page due to browser security. This type of restriction is called as same-origin policy, and prevents a malicious site from reading sentitive data from another site. However, sometimes you might want to let other sites call your web API.

For allow other sites to call your web api add following lines in your config file:-

No comments:

Post a Comment