| title | corsConfiguration resource type (deprecated) |
|---|---|
| description | Represents the CORS settings for an on-premises application segment published via Application Proxy. |
| ms.localizationpriority | medium |
| author | dhruvinrshah |
| ms.subservice | entra-applications |
| doc_type | resourcePageType |
| ms.date | 07/26/2024 |
Namespace: microsoft.graph
[!INCLUDE beta-disclaimer]
Represents the CORS settings for the onPremisesApplicationSegment resource when publishing an on-premises application through Microsoft Entra application proxy. For more information, see Understand and solve Microsoft Entra application proxy CORS issues.
| Property | Type | Description |
|---|---|---|
| allowedHeaders | String Collection | The request headers that the origin domain may specify on the CORS request. The wildcard character * indicates that any header beginning with the specified prefix is allowed. |
| allowedMethods | String Collection | The HTTP request methods that the origin domain may use for a CORS request. |
| allowedOrigins | String Collection | The origin domains that are permitted to make a request against the service via CORS. The origin domain is the domain from which the request originates. The origin must be an exact case-sensitive match with the origin that the user age sends to the service. |
| maxAgeInSeconds | Integer | The maximum amount of time that a browser should cache the response to the preflight OPTIONS request. |
| resource | String | Resource within the application segment for which CORS permissions are granted. / grants permission for whole app segment. |
None.
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.corsConfiguration",
"resource": "String",
"allowedOrigins": [
"String"
],
"allowedHeaders": [
"String"
],
"allowedMethods": [
"String"
],
"maxAgeInSeconds": "Integer"
}