Useful HTTP Response Headers for IIS and ArcGIS JavaScript Web Applications

This is in addition to a question I answered on Stack Overflow where someone had asked how to turn off IE compatibility mode (hint: set “X-UA-Compatible” to “IE=edge”).

These additional response headers are useful in making ArcGIS Server REST endpoints accessible across sites without adding XSS vulnerability.

Useful HTTP Response Headers for IIS and ArcGIS JavaScript Web Applications
Access-Control-Allow-Credentials true
Access-Control-Allow-Headers Origin,X-Requested-With,Content-Type,Accept
Access-Control-Allow-Methods GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Origin *
X-UA-Compatible IE=edge

~ by bwsd on February 6, 2017.

Posted in ArcGIS, JavaScript, Windows
Tags:

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

 
%d bloggers like this: