Fresh logo
🚧 This documentation is work in progress and for an unreleased version of Fresh.

cors

The cors() middleware can be used to add Cross-Origin-Resource-Sharing headers to HTTP requests. These allow the server to indicate which origins (domains, scheme or port) other than its own is permitted to load resources from.

Typescript main.ts
import { cors } from "fresh";

const app = new App()
  .use(cors({
    origin: "http://example.com",
    allowHeaders: ["X-Custom-Header", "Upgrade-Insecure-Requests"],
    allowMethods: ["POST", "GET", "OPTIONS"],
    exposeHeaders: ["Content-Length", "X-Kuma-Revision"],
    maxAge: 600,
    credentials: true,
  }))
  .get("/", () => new Response("hello"));

Options

See the API docs for a list of all supported options