The IIS Team is pleased to announced the release of version 1.0 of IIS CORS Module which enables support for the Cross-Origin Resource Sharing (CORS) protocol.
CORS is a mechanism to let a user-agent to access resources from a domain outside of the domain from which the first resource was served. CORS defines a way by using additional HTTP headers to allow to request permissions to access a selected resource. In addition, some requests may even a trigger a preflight request probing supported HTTP methods from the server with an HTTP OPTIONS request. The IIS CORS module helps with setting appropriate response headers and responding to preflight requests.
Once installed, the IIS CORS module is configured via a site or application web.config and has it’s own cors configuration section within system.webserver. Have a look the configuration reference for more information.
We’d love to hear your feedback on using the new module. Give it a spin and let us know what you think!