cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
    Dedicated community for Japanese speakers
  • 한국 커뮤니티
    Dedicated community for Korean speakers
Exit
0
Upvote

CORS AJaX GET

WolfShade
LEGEND ,
Jul 12, 2018 Jul 12, 2018

Copy link to clipboard

Copied

Hello, all,

I was just wondering if anyone has successfully accomplished a CORS via AJaX by setting the "Access-Control-Allow-Origin" header to either wildcard (*) or FQDN (www.anothersite.com)?

I found a claim that I can use a CFHEADER tag to set the Access-Control-Allow-Origin and complete a cross-origin request. I was just wondering if anyone else has successfully done the same thing (regardless of server-side language).

V/r,

^ _ ^

Views

428

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines

correct answers 1 Correct answer

WolfShade
LEGEND , Jul 12, 2018 Jul 12, 2018

Welp.. I found my answer.  "DENY".  Webserver is set to disallow, so even including the special header "Access-Control-Allow-Origin" will not work. 

My job can sometimes be like herding cats.

V/r,

^ _ ^

Votes

Translate

Translate
replies 3 Replies 3
latest latest Jump to latest reply
Dave Watts Community Expert
Community Expert ,
Jul 12, 2018 Jul 12, 2018

Copy link to clipboard

Copied

I've done this in .NET. I would assume it would also work in CF, but don't remember testing it recently.

Dave Watts, Fig Leaf Software

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
WolfShade
LEGEND ,
Jul 12, 2018 Jul 12, 2018

Copy link to clipboard

Copied

In Response To Dave Watts

I don't know what I'm doing incorrectly, but I can't get it to work.  Looking at the header info, it still shows my staging FQDN as the origin, and nothing about Access-Control-Allow-Origin is present (viewing in DevTools.)

Is it possible that a webserver can be set so that a CF server cannot alter the header in question?

V/r,

^ _ ^

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
WolfShade
LEGEND ,
Jul 12, 2018 Jul 12, 2018

Copy link to clipboard

Copied

LATEST
In Response To WolfShade

Welp.. I found my answer.  "DENY".  Webserver is set to disallow, so even including the special header "Access-Control-Allow-Origin" will not work. 

My job can sometimes be like herding cats.

V/r,

^ _ ^

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Documentation
ColdFusion User Guide
Copyright © 2023 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices