CORS Header
Last updated
Last updated
© 2025 Medianova. All rights reserved.
Dynamic content is often generated on the fly based on user requests, and can include things like personalized data, user-specific content, or real-time updates. For such resources, it’s essential to ensure that CORS headers are properly configured to allow cross-origin requests without compromising security.
Medianova CDN supports CORS for dynamic content delivery, enabling your web applications to request resources dynamically from different origins. This is particularly important when the dynamic content is served from multiple servers or locations. You can manage this feature through the following steps:
You can access the Medianova cloud panel by logging in with your username and password at http://cloud.medianova.com .
You can reach CORS Header setting by clicking on the CDN Resource you would like to edit by following the CDN > CDN Resources path on the left side of the panel screen and navigating to Headers tab.
After turning on the status of the CORS Header feature, you can add the domains you want to allow for CORS and click on the Add CORS Header button to save changes. Example: http://www.domain.com .
The domains you add will be listed as shown below.
If the CORS Header feature is disabled, content cannot be received from different sources with different domain names. When content is requested from different sources, the content will not be served and will appear as a CORS error on the Development Tools console.
Activating CORS Header allows content to be received from different sources over additional domains. It is possible to define more than one additional domain. You can delete any previously defined additional domain name, as well. If no value is entered in the domain name field while enabling CORS header, the default setting is being set to *, which means requests from all sites and domains will be allowed. This operation is not recommended as it may create security vulnerabilities.
It may take a few minutes for the feature to be active, after adding domains and submitting the changes by clicking on the button.
