Last Updated: February 25, 2016
·
7.818K
· elcuervo

Nginx CORS configuration

#nginx
#cors
#ajax

I've found some situations (specially API design) when it becomes really useful to allow other hosts to do cross site ajax request.

Normal ajax request (same site) executes it when you call it, but cross site ajax requests executes an OPTIONS first and checks for some given headers.

The Access-Control-Allow-Origin checks from where the server allows requests, using an * allows you to let everyone pass.

This is how you enable it using Nginx:

location / {
    if ($request_method = 'OPTIONS') {
        add_header 'Access-Control-Allow-Origin' '*';
        add_header 'Access-Control-Allow-Methods' 'POST, GET, OPTIONS';
        add_header 'Access-Control-Max-Age' '1728000';
        add_header 'Content-Type' 'text/plain; charset=UTF-8';
        return 200;
    }
}
#nginx
#cors
#ajax

Written by elcuervo

Say Thanks
Respond

Related protips

Installing Nginx in Mac OS X Maverick With Homebrew

279.4K
23

Nginx direct file upload

144.9K
60

Nginx as proxy for Amazon S3

142.7K
13

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Nginx Authors
mikhailov
290.1K
#nginx
reiaguilera
279.4K
#nginx
#JavaScript
#Open Source
boris
92.08K
#nginx
#CSS
#Ruby
jamesdullaghan
90.14K
#nginx
#JavaScript
#Ruby
aeas44
61.28K
#nginx
#Python
#Docker
Related Tags
#nginx
#cors
#ajax
Sponsored by
#native_company#
#native_desc#
#native_cta#
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#