Waiting for engine...
Skip to main content

DeployedApiCors

Cross-Origin Resource Sharing (CORS) configuration for a deployed API.

type DeployedApiCors {
  origins: [String!]!
  methods: [HttpMethod!]!
  headers: [String!]!
  allowCredentials: Boolean!
  maxAge: Int!
  exposeHeaders: [String!]!
  enableCors: Boolean
  runPolicies: Boolean
}

Fields

DeployedApiCors.origins ● [String!]! non-null scalar miscellaneous

List of allowed origin domains that can access the API.

DeployedApiCors.methods ● [HttpMethod!]! non-null enum catalog-service

List of HTTP methods allowed for cross-origin requests.

DeployedApiCors.headers ● [String!]! non-null scalar miscellaneous

List of HTTP headers that are allowed in cross-origin requests.

DeployedApiCors.allowCredentials ● Boolean! non-null scalar miscellaneous

Whether credentials (cookies, authorization headers) are allowed in cross-origin requests.

DeployedApiCors.maxAge ● Int! non-null scalar miscellaneous

Maximum time in seconds that preflight request results can be cached.

DeployedApiCors.exposeHeaders ● [String!]! non-null scalar miscellaneous

List of HTTP headers that browsers are allowed to access in the response.

DeployedApiCors.enableCors ● Boolean scalar miscellaneous

Whether CORS is enabled for this API.

DeployedApiCors.runPolicies ● Boolean scalar miscellaneous

Whether policy execution is enabled for preflight requests.

Member Of

DeployedApi object ●  Gateway object

On this Page