Course info
Dec 13, 2019

In this modern application era, applications that have the client and the server on the same origin are becoming less and less common. APIs are accessed from multiple clients hosted on different origins. In this course, Configuring CORS in ASP.NET and ASP.NET Core, you will learn how to setup CORS for your APIs so only approved client applications can access them. First, you will learn how browsers implement CORS. Next, you will discover how to configure your ASP.NET applications to allow CORS request to origins that you trust. Finally, you will explore the different CORS requests types and configuration options to help us secure and optimize requests coming in from other origins. By the end of this course, you will be able to identify CORS requests, configure CORS for your ASP.NET and ASP.NET Core applications.

About the author
About the author

Nertil is a independent software consultant working with different teams around the world to bring products to marked. He is focused on using the right tools for the job.

More from the author
Building Data-driven Apps with AWS AppSync
1h 3m
Sep 22, 2020
More courses by Nertil Poci
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi, my name is Nertil, and welcome to my course, Configuring CORS in ASP.NET and ASP.NET Core. Modern web applications nowadays consume a multitude of APIs to provide the user a rich experience. Managing which origins are allowed to access your API is an important security concern that we need to address. Learn how same origin policy restrictions work and how to use Core to relax those restrictions. Some of the major topics that we will cover include understanding how same origin policy works and how to use CORS to override it, configuring CORS in ASP.NET globally for your applications, setting up wildcard subdomains including credentials and caching CORS requests. By the end of this course, you'll know how same origin policy works and how browsers implement this restriction. You will be able to configure CORS for your ASP.NET application globally, enable credentials for CORS requests, identify different CORS request types, enable CORS for your subdomains using a wildcard, and debug CORS issues that you might face when consuming your APIs.  Before beginning this course, you should be familiar with building Web APIs using the ASP.NET and ASP.NET Core framework.  I hope you will join me on this journey to learn how to configure CORS for your .NET applications with the Configuring CORS in ASP.NET and ASP.NET Core course, at Pluralsight.