object CORS

Implements the CORS protocol. The actual middleware is a CORSPolicy, which can be obtained via #policy.

Source
CORS.scala
See also

CORSPolicy

CORS protocol specification

Linear Supertypes
Ordering
  1. Alphabetic
  2. By Inheritance
Inherited
  1. CORS
  2. AnyRef
  3. Any
  1. Hide All
  2. Show All
Visibility
  1. Public
  2. All

Value Members

  1. final def !=(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  2. final def ##(): Int
    Definition Classes
    AnyRef → Any
  3. final def ==(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  4. final def asInstanceOf[T0]: T0
    Definition Classes
    Any
  5. def clone(): AnyRef
    Attributes
    protected[lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( ... ) @native()
  6. final def eq(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef
  7. def equals(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  8. def finalize(): Unit
    Attributes
    protected[lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( classOf[java.lang.Throwable] )
  9. final def getClass(): Class[_]
    Definition Classes
    AnyRef → Any
    Annotations
    @native()
  10. def hashCode(): Int
    Definition Classes
    AnyRef → Any
    Annotations
    @native()
  11. final def isInstanceOf[T0]: Boolean
    Definition Classes
    Any
  12. final def ne(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef
  13. final def notify(): Unit
    Definition Classes
    AnyRef
    Annotations
    @native()
  14. final def notifyAll(): Unit
    Definition Classes
    AnyRef
    Annotations
    @native()
  15. val policy: CORSPolicy

    The default CORS policy: - Sends Access-Control-Allow-Origin: * - Sends no Access-Control-Allow-Credentials - Sends no Access-Control-Expose-Headers - Sends Access-Control-Allow-Methods: GET, HEAD, POST - Reflects request's Access-Control-Request-Headers as Access-Control-Allow-Headers - Sends no Access-Control-Max-Age

  16. final def synchronized[T0](arg0: ⇒ T0): T0
    Definition Classes
    AnyRef
  17. def toString(): String
    Definition Classes
    AnyRef → Any
  18. final def wait(): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  19. final def wait(arg0: Long, arg1: Int): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  20. final def wait(arg0: Long): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws( ... ) @native()

Deprecated Value Members

  1. def DefaultCORSConfig: CORSConfig
    Annotations
    @deprecated
    Deprecated

    (Since version 0.21.27) The default CORSConfig is insecure. See https://github.com/http4s/http4s/security/advisories/GHSA-52cf-226f-rhr6.

  2. def apply[F[_], G[_]](http: Http[F, G], config: CORSConfig = CORSConfig.default)(implicit F: Applicative[F]): Http[F, G]

    CORS middleware This middleware provides clients with CORS information based on information in CORS config.

    CORS middleware This middleware provides clients with CORS information based on information in CORS config. Currently, you cannot make permissions depend on request details

    Annotations
    @deprecated @nowarn()
    Deprecated

    (Since version 0.21.27) Depends on a deficient CORSConfig. See https://github.com/http4s/http4s/security/advisories/GHSA-52cf-226f-rhr6. If config.anyOrigin is true and config.allowCredentials is true, then the Access-Control-Allow-Credentials header will be suppressed starting with 0.22.3.

  3. val defaultVaryHeader: Raw
    Annotations
    @deprecated
    Deprecated

    (Since version 0.21.27) Not the actual default CORS Vary heder, and will be removed from the public API.

  4. def httpApp[F[_]](httpApp: HttpApp[F])(implicit arg0: Applicative[F]): HttpApp[F]
    Annotations
    @deprecated
    Deprecated

    (Since version 0.21.27) Hardcoded to an insecure config. See https://github.com/http4s/http4s/security/advisories/GHSA-52cf-226f-rhr6.

  5. def httpRoutes[F[_]](httpRoutes: HttpRoutes[F])(implicit arg0: Monad[F]): HttpRoutes[F]
    Annotations
    @deprecated
    Deprecated

    (Since version 0.21.27) Hardcoded to an insecure config. See https://github.com/http4s/http4s/security/advisories/GHSA-52cf-226f-rhr6.

Inherited from AnyRef

Inherited from Any

Ungrouped