CORS Headers in Azure App Service running Express JS

Question

I'm building a simple web application which has to Cross Origin Resource Sharing restricted to some sites. The app is running in the Azure cloud on an App Service. Right now I have set the CORS headers from both the Azure portal and the Express server app as a middleware in the following way:

app.use(function(req, res, next) { res.header("Access-Control-Allow-Origin", "*"); res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept"); next(); });

My question is, that can I remove the CORS headers from the Express App and use only the headers which are provided by the Azure App Service? Thanks.

Hi @AaronChen-MSFT. I removed the CORS headers from the Node application and it worked. Thank you :) — Tyhjis, Dec 29 '16 at 12:35
My pleasure. If you think this answer below is beneficial for you as well as for others please mark it as correct :-) — Aaron Chen, Dec 29 '16 at 13:11

Aaron Chen · Accepted Answer · 2016-12-05T03:25:32.960

Yes, definitely you can achieve it either by setting CORS headers from the Azure portal or by adding CORS headers from your App.

For other people’s convenience, here I also provide the following steps to set CORS header from the Azure portal.

Navigate to the Azure portal.
Navigate to your App Service.
Click CORS in the API menu.
Enter each URL in the empty ALLOWED ORIGINS text box. A new text box is created.
Click Save.

score 0 · Answer 2 · answered Feb 21 '23 at 10:21

0

They don't recommend to use both

answered Feb 21 '23 at 10:21

Cesar Moran

123
1
9

CORS Headers in Azure App Service running Express JS

2 Answers2

Linked