Get CORS Headers

Retrieves CORS Headers for website accleration domain.

Request

Request-Line

GET /waap/v1.0/services/{serviceId}/corsHeaders HTTP/1.1

Request Parameters

Path Parameters

Parameter	Type	Required	Description
serviceId	Integer	Mandatory	Service ID.

Response

Response Body

Parameter	Type	Required	Description
accessControlAllowOrigin	String	Optional	Response can be shared with requesting code from the given origin. Please note that null value is not allowed, it must be either '*' or 'scheme://fqdn'.
accessControlExposeHeaders	String	Optional	Headers can be exposed as part of the response by listing their names. This header accepts any string value. E.g. "Content-Length".
accessControlMaxAge	Integer	Optional	Maximum time in seconds that a CORS preflight response can be cached. Accepts non-negative integers or -1 (0 = no cache, -1 = cache indefinitely).
accessControlAllowCredentials	Boolean	Optional	Indicates whether the response can be exposed to frontend JavaScript. Must be true.
accessControlAllowMethods	String	Optional	Accepts a single method or a comma-separated list from: GET, POST, PUT, DELETE, HEAD, OPTIONS, CONNECT, TRACE.
accessControlAllowHeaders	String	Optional	HTTP headers can be used during the actual request. This header accepts any string value. E.g. "X-Customer-Token".

Status Codes, Error Codes and Error Messages

Status Code	Error Code	Error Message
400	ServiceId.Invalid	ServiceId is empty or invalid.
400	CorsHeaders.OperationFailed	The Cors Headers operation failed.
404	ServiceId.NotFound	ServiceId is not found.

Examples

Get CORS Headers

Request

GET /waap/v1.0/services/12345/corsHeaders HTTP/1.1

Successful Response Body

{
    "accessControlExposeHeaders": "Content-Length, X-Request-Id",
    "accessControlMaxAge": "3600",
    "accessControlAllowCredentials": "true",
    "accessControlAllowOrigin": "https://www.example.com",
    "accessControlAllowHeaders": "Content-Type, Authorization",
    "accessControlAllowMethods": "GET,POST,OPTIONS"
}