huahaofeng
/
aspnetcore
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Changed allowed header to Cache-control to illustrate Access-Control-Allow-Headers and Access-Control-Request-Headers

This commit is contained in:
Jass Bagga 2016-11-21 16:13:30 -08:00
parent 34aa1c5722
commit 7b190ccf0f
2 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
samples/SampleDestination/Startup.cs
View File

@ -24,7 +24,7 @@ namespace SampleDestination
app.UseCors(policy => policy app.UseCors(policy => policy
.WithOrigins("http://origin.example.com:5001") .WithOrigins("http://origin.example.com:5001")
.WithMethods("PUT") .WithMethods("PUT")
.WithHeaders("Content-Length")); .WithHeaders("Cache-Control"));
app.Run(async context => app.Run(async context =>
{ {

8
samples/SampleOrigin/wwwroot/Index.html
View File

@ -63,7 +63,7 @@
</script> </script>
<p>CORS Sample</p> <p>CORS Sample</p>
Method: <input type="text" id="methodName" /><br /><br /> Method: <input type="text" id="methodName" /><br /><br />
Header Name: <input type="text" id="headerName" value="Content-Length" /> Header Value: <input type="text" id="headerValue" value="10" /><br /><br /> Header Name: <input type="text" id="headerName" value="Cache-Control" /> Header Value: <input type="text" id="headerValue" value="no-cache" /><br /><br />
<script> <script>
document.getElementById('methodName') document.getElementById('methodName')
.addEventListener("keyup", function (event) { .addEventListener("keyup", function (event) {
@ -90,10 +90,10 @@
<button class="button gray" id="CORS" type="submit" onclick="makeCORSRequest(document.getElementById('methodName').value, document.getElementById('headerName').value, document.getElementById('headerValue').value);">Make a CORS Request</button><br /><br /><br /><br /> <button class="button gray" id="CORS" type="submit" onclick="makeCORSRequest(document.getElementById('methodName').value, document.getElementById('headerName').value, document.getElementById('headerValue').value);">Make a CORS Request</button><br /><br /><br /><br />
Method DELETE is not allowed:<button class="button red" id="InvalidMethodCORS" type="submit" onclick="makeCORSRequest('DELETE', 'Content-Length', '10');">Invalid Method CORS Request</button> Method DELETE is not allowed:<button class="button red" id="InvalidMethodCORS" type="submit" onclick="makeCORSRequest('DELETE', 'Cache-Control', 'no-cache');">Invalid Method CORS Request</button>
Method PUT is allowed:<button class="button green" id="InvalidMethodCORS" type="submit" onclick="makeCORSRequest('PUT', 'Content-Length', '10');">Valid Method CORS Request</button><br /><br /> Method PUT is allowed:<button class="button green" id="InvalidMethodCORS" type="submit" onclick="makeCORSRequest('PUT', 'Cache-Control', 'no-cache');">Valid Method CORS Request</button><br /><br />
Header 'Max-Forwards' not supported:<button class="button red" id="InvalidHeaderCORS" type="submit" onclick="makeCORSRequest('PUT', 'Max-Forwards', 'x');">Invalid Header CORS Request</button> Header 'Max-Forwards' not supported:<button class="button red" id="InvalidHeaderCORS" type="submit" onclick="makeCORSRequest('PUT', 'Max-Forwards', 'x');">Invalid Header CORS Request</button>
Header 'Content-Length' is supported:<button class="button green" id="InvalidHeaderCORS" type="submit" onclick="makeCORSRequest('PUT', 'Content-Length', 'x');">Valid Header CORS Request</button><br /><br /> Header 'Cache-Control' is supported:<button class="button green" id="InvalidHeaderCORS" type="submit" onclick="makeCORSRequest('PUT', 'Cache-Control', 'no-cache');">Valid Header CORS Request</button><br /><br />
</body> </body>
</html> </html>