LOG IN SIGN UP
Documentation

Enabling cross-origin resource sharing (CORS)

We recommend enabling CORS (Cross-Origin Resource Sharing) when using Amazon S3 as your backend server. To enable CORS, set up a custom HTTP header for your service by following the steps below.

  1. Log in to the Fastly web interface and click the Configure link.
  2. From the service menu, select the appropriate service.
  3. Click the Edit configuration button and then select Clone active. The service version page appears.
  4. Click the Content tab. The Content page appears.

    the Content page

  5. Click the Create header button. The Create a new header page appears.

    a Custom CORs header

  6. Fill out the Create a new header fields as follows:

    • From the Type menu, select Cache, and from the Action menu, select Set.
    • In the Destination field, type http.Access-Control-Allow-Origin.
    • In the Source field, type "*".
    • Leave the Ignore if set menu and the Priority field set to their default values.
    • In the Description field, type a descriptive name for the new header (e.g., CORS S3 Allow). This name is displayed in the Fastly web interface.
  7. Click the Create button. The new header appears on the Content page.

  8. Click the Activate button to deploy your configuration changes.

Test it out

Running the command curl -I your-hostname.com/path/to/resource should include similar information to the following in your header:

Access-Control-Allow-Origin: http://your-hostname.tld
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Content-Length, Connection, Date...

Back to Top