Cross-Origin Resource Sharing (CORS)
The Cross-Origin Resource Sharing (CORS) configuration category includes the following configurable options:
CORS Allowed Request Headers
CORS Enabled
CORS Origins
|
CORS Allowed Request Headers |
|
|
STRING | |
A comma-separated list of allowable request headers for the CORS filter. These will be added in addition to the default headers required for Smile CDR's default functionality. | |
|
|
(no default) | |
|
|
CORS Enabled |
|
|
BOOLEAN | |
Should this endpoint allow the use of CORS? Enable this item only if you understand what it is doing. | |
|
|
false
|
|
|
|
CORS Origins |
|
|
STRING | |
A comma-separated list of allowable origins for the CORS filter. For example: https://example.com, https://try.smilecdr.com:9201 . You may also use the wildcard value * to allow CORS for all domains, however this is generally not considered a good practice for production systems serving sensitive data.
|
|
|
|
*
|
|
|
You are about to leave the Smile Digital Health documentation and navigate to the Open Source HAPI-FHIR Documentation.