Home Library Learn Samples Downloads Support Community Forums

Implementing CORS support in ASP.NET Web APIs

This sample shows how to enable CORS (Cross-Origin Resource Sharing) in an ASP.NET Web API project

C# (4.2 MB)
 
 
 
 
 
(6)
4,704 times
Add To Favorites
7/2/2012
E-mail Twitter del.icio.us Digg Facebook
Report Abuse to Microsoft
Sign in to Ask a Question

  • Answer the Question | Hide
    Not working with Entitysetcontroller
    1 Posts | Last Post May 14, 2013
    • Written May 14, 2013 
      Hi 
I have downloaded your code and I have hosted on IIS server and call it from different browsers (Cross browser), and every time it is giving an error not calling action of controller. Is dere any thing wrong with code sample.
  • Answer the Question | Hide
    Released version of WebAPI
    1 Posts | Last Post May 02, 2013
    • Written May 02, 2013 
      I can see now there is a released version of Web API.

Do we need to follow the same process to have CORS enabled in the released version of WebAPI?

Is there any link to help for the latest version?
  • Answer the Question | Hide
    Sorry - need to clarify question about different URLs
    1 Posts | Last Post March 14, 2013
    • Written March 14, 2013 
      Working on IE 9 w/cookies:
  Origin: app.foo.com
  WebApi: app.foo.com:8080

Not working on FF 19.0.2 with cookies:
  Origin: app.foo.com
  WebApi: app.foo.com:8080

Not Working on FF 19.0.2 with cookies:
  Origin: app.foo.com
  WebApi: svc.foo.com

Not Working on IE 9 at all, no request made:
  Origin: app.foo.com
  WebApi: svc.foo.com

Sorry for the multiple posts. Any help would be oh so appreciated. I am using jQuery to make the requests - all GET requests so far.

Thanks!!!
  • Answer the Question | Hide
    Oh oh different URL's not working
    1 Posts | Last Post March 14, 2013
    • Written March 14, 2013 
      I was wrong and right in my earlier question. I can get this to work from IE (cookies and all) if the origin & webapi urls are the same but differ by port. E.g. origin (app.foo.com) webapi (api.foo.com or api.bar.com).

Any ideas how or if this can work?
  • Answer the Question | Hide
    Will this work with sending cookies?
    1 Posts | Last Post March 14, 2013
    • Written March 14, 2013 
      First - great post!

I got this to work with IE & FF but FF won't send cookies even though I return Access-Control-Allow-Credentials: true.

Any thoughts about if this can work with FF (and eventually Safari & Chrome)?

Thanks!
  • Answer the Question | Hide
    Why not show your constants?
    1 Posts | Last Post January 21, 2013
    • Written January 21, 2013 
      Not sure why you defined constants for Origin, AccessControlRequestMethod, etc... and then didn't include them in your code example.  Makes it pretty confusing for anyone trying to work from the code sample without downloading your whole project.
  • Answer the Question | Hide
    Not working
    2 Posts | Last Post November 12, 2012
    • Written October 22, 2012 
      Hi ,
I already download your uploaded project and run it but it did'nt work and it return just error !! 
what is the problem bro ?
    • Written November 12, 2012 
      +1 this question.. because it is awesome
  • Answer the Question | Hide
    Will this work with HTTPS
    2 Posts | Last Post October 16, 2012
    • Written August 27, 2012 
      Hi,
I looked at the code sample for CORS support. Its just came to my mind.Do you think there will be any issue with HTTPS ?

Thanks for your pointers.
    • Written October 16, 2012 
      Yes, this should work for HTTPS as well.
© 2013 Microsoft. All rights reserved.