ResponseHeadersPolicyCorsConfig
A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS). CloudFront adds these headers to HTTP responses that it sends for CORS requests that match a cache behavior associated with this response headers policy.
For more information about CORS, see Cross-Origin Resource Sharing (CORS) in the MDN Web Docs.
Types
Properties
A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.
A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.
A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.
A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.
A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.
A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.
A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.