集合主题趋势排行榜

#

Cross-origin resource sharing (CORS)

Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be accessed from another domain outside the domain from which the first resource was served. CORS also relies on a mechanism by which browsers make a "preflight" request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request. For security reasons, browsers restrict cross-origin HTTP requests initiated from scripts. For example, fetch() and XMLHttpRequest follow the same-origin policy. This means that a web application using those APIs can only request resources from the same origin the application was loaded from unless the response from other origins includes the right CORS headers.

Resource types

Invocations of fetch() or XMLHttpRequest
Web Fonts (for cross-domain font usage in @font-face within CSS), so that servers can deploy TrueType fonts that can only be loaded cross-origin and used by websites that are permitted to do so
WebGL textures
Images/video frames drawn to a canvas using drawImage()
CSS shapes from images
scripts
iframes

fruitcake / laravel-cors

Adds CORS (Cross-Origin Resource Sharing) headers support in your Laravel application

PHP Laravel middleware Cross-origin resource sharing (CORS)Hacktoberfest

PHP 6.26 k

3 年前

expressjs / cors

Node.js CORS middleware

JavaScript Node.js Express middleware Cross-origin resource sharing (CORS)

JavaScript 6.17 k

19 天前

everywall / ladder

Selfhosted alternative to 12ft.io. and 1ft.io bypass paywalls with a proxy ladder and remove CORS headers from any URL

bypass paywall paywall-blocker paywall-bypasser Cross-origin resource sharing (CORS)cors-proxy

Go 5.96 k

1 年前

adamchainz / django-cors-headers

Django app for handling the server headers required for Cross-Origin Resource Sharing (CORS)

Django Cross-origin resource sharing (CORS)

Python 5.55 k

13 天前

anjoy8 / Blog.Core

💖 ASP.NET Core 8.0 全家桶教程，前后端分离后端接口，vue教程姊妹篇，官方文档：

netcore automapper repository t4 netcore-webapi sqlsugarcore dto Redis aop IoC (Disambiguation)swagger Cross-origin resource sharing (CORS)JSON Web Tokens autofac 依赖注入 rbac sqlsugar net7

C# 5.25 k

5 个月前

jpillora / xdomain

A pure JavaScript CORS alternative

cross-domain Cross-origin resource sharing (CORS)JavaScript xhr

JavaScript 3.15 k

1 个月前

JoyChou93 / java-sec-code

Java web common vulnerabilities and security code which is base on springboot and spring security

Java Code 安全 xxe rce deserialize tomcat sqli ssrf rmi Cross-origin resource sharing (CORS)jsonp Web spel benchmark

Java 2.6 k

1 年前

developit / express-es6-rest-api

🔋 Starter project for an ES6 RESTful Express API.

Cross-origin resource sharing (CORS)Mongoose Express ECMAScript es2015 API JavaScript 模板

JavaScript 2.46 k

3 年前

nelmio / NelmioCorsBundle

Adds CORS (Cross-Origin Resource Sharing) headers support in your Symfony application

PHP Symfony bundle cors-request Cross-origin resource sharing (CORS)cross-origin-resource-sharing

PHP 1.92 k

1 年前

CORS Misconfiguration Scanner

Cross-origin resource sharing (CORS)vulnerability-scanner

Python 1.47 k

3 年前

roottusk/vapi

roottusk / vapi

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

owasp API apitop10 owasp-top-10 owasp-top-ten vulnerable-application appsec appsec-tutorials Bug Bounty Hacktoberfest Docker Cross-origin resource sharing (CORS)PHP Postman hacktoberfest-accepted exercises

HTML 1.3 k

9 个月前

francescomalatesta / laravel-api-boilerplate-jwt

A Laravel 5.8 API Boilerplate to create a ready-to-use REST API in seconds.

Laravel API REST API JSON Web Tokens 模板 dingo Cross-origin resource sharing (CORS)

PHP 1.18 k

6 年前

chenjj / CORScanner

🎯 Fast CORS misconfiguration vulnerabilities scanner

Cross-origin resource sharing (CORS)Python web-security vulnerability-scanners

Python 1.13 k

4 年前

xianhc / ape-volo-admin

.Net 8 、SqlSugar ORM、Vue 2.X、RBAC。前后端分离的开箱则用的企业级的权限开发框架(中后台管理系统)

MySQL Redis Cross-origin resource sharing (CORS)JSON Web Tokens 依赖注入 swagger-ui netcore quartz-net aop async/await autofac automapper sqlsugarcore Authentication Authorization serilog

C# 1.08 k

5 个月前

javieraviles / node-typescript-koa-rest

REST API boilerplate using NodeJS and KOA2, typescript. Logging and JWT as middlewares. TypeORM with class-validator, SQL CRUD. Docker included. Swagger docs, actions CI and valuable README

Node.js Koa TypeScript REST API koa-router nodemon Docker SQL typeorm CRUD class-validator Heroku Cross-origin resource sharing (CORS)JSON Web Tokens helmet swagger Actions

TypeScript 1.01 k

2 年前

corydolphin / flask-cors

Cross Origin Resource Sharing ( CORS ) support for Flask

Python flask-extensions Cross-origin resource sharing (CORS)

Python 933

4 个月前

Baroshem / nuxt-security

🛡 Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware

module Nuxt.js owasp 安全 Vue.js Cross-origin resource sharing (CORS)rate-limiting xss csrf

TypeScript 928

2 个月前

gnuns / allOrigins

👽 Pull content from any page as JSON via API

Cross-origin resource sharing (CORS)JSON JavaScript API Node.js gzip request

JavaScript 919

3 年前

xuexb / learn-nginx

Nginx 入门指南

nginx rewrite proxy Cross-origin resource sharing (CORS)

Shell 873

5 年前

OP-Engineering / link-preview-js

⛓ Extract web links information: title, description, images, videos, etc. [via OpenGraph], runs on mobiles and node.

Parsing extract js-library extract-information Node.js React Native HTTP JavaScript TypeScript link Cross-origin resource sharing (CORS)Chrome Firefox safari

TypeScript 836

5 个月前

loading...

Created by WHATWG, Matt Oshry, Brad Porter, Michael Bodell, Tellme Networks

发布于 May 2006

Website: fetch.spec.whatwg.org
Wikipedia: 维基百科

相关主题