Cross Origin Resource Sharing is a mechanism that uses additional HTTP Header Fields to tell a browser to let a web application running at one Web Origin have permission to access selected resources from a server at a different Web Origin.
If such an API is used on http://example.org resources, a resource on http://hello-world.example can opt in using the Cross Origin Resource Sharing mechanism described by the Cross Origin Resource Sharing (e.g., specifying Access-Control-Allow-Origin: http://example.org as response header), which would allow that resource to be fetched cross-origin from http://example.org.
More Information#There might be more information for this subject on one of the following:
- [#1] - Cross Origin Resource Sharing - based on data observed:2015-05-18
- [#2] - CORS Tutorial: A Guide to Cross-Origin Resource Sharing - based on information obtained 2019-08-24
- [#3] - Cross-Origin Resource Sharing (CORS) - based on information obtained 2019-08-24
- [#4] - 3.2. CORS protocol - based on information obtained 2019-08-24