Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
C
C
cmonguys2017-11-17 18:45:14
API
cmonguys, 2017-11-17 18:45:14

How to allow API route to be opened only from the specified domain?

I have a route https://my-api-server/datathat my application uses https://example.comto receive data.
On this API server, I set it Access-Control-Allow-Originwith a value https://example.comand now this route is "embedded" only by this domain (origin). But the problem is, if I go directly to the address https://my-api-server/data, then all the data is open.
How to make this CORS work also on a direct transition along the route and work only if the request comes from the specified domains?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
W
WildCat322021-10-14 22:05:05
Silent community bot for VK? 1Reply
D
daf234za2020-07-14 10:11:31
Can't access VK api method? 1Reply
S
serjio5682018-07-23 21:31:34
How to work with VK API? 0Reply
P
puffyq2020-07-14 16:39:08
Structure of python file with VK API request? 3Reply
S
seoplus20192020-07-14 19:51:39
Need an api telegram bot command? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question