Module io.helidon.microprofile.cors
Package io.helidon.microprofile.cors

Annotation Interface CrossOrigin

@Target(METHOD) @Retention(RUNTIME) @Documented @Deprecated(forRemoval=true, since="4.4.0") public @interface CrossOrigin
Deprecated, for removal: This API element is subject to removal in a future version.
use annotations from Cors to configure CORS; each method in this annotation is equivalent to an annotation class in the referenced class. I.e. value() is replaced with Cors.AllowOrigins; this class will be removed from a future version of Helidon.
CrossOrigin annotation.

  • Optional Element Summary

    Optional Elements
    Modifier and Type
    Optional Element
    Description
    boolean
    allowCredentials
    Deprecated, for removal: This API element is subject to removal in a future version.
    Whether the client can send cookies or credentials.
    String[]
    allowHeaders
    Deprecated, for removal: This API element is subject to removal in a future version.
    A list of request headers that are allowed or "*" to allow all headers.
    String[]
    allowMethods
    Deprecated, for removal: This API element is subject to removal in a future version.
    A list of supported HTTP request methods.
    String[]
    exposeHeaders
    Deprecated, for removal: This API element is subject to removal in a future version.
    A list of response headers allowed for clients other than the "standard" ones.
    long
    maxAge
    Deprecated, for removal: This API element is subject to removal in a future version.
    Pre-flight response duration in seconds.
    String[]
    value
    Deprecated, for removal: This API element is subject to removal in a future version.
    A list of origins that are allowed such as "http://foo.com" or "*" to allow all origins.

  • Element Details

    • value

      String[] value
      Deprecated, for removal: This API element is subject to removal in a future version.
      A list of origins that are allowed such as "http://foo.com" or "*" to allow all origins. Corresponds to header Access-Control-Allow-Origin.
      Returns:
      Allowed origins.
      Default:
      {"*"}

    • allowHeaders

      String[] allowHeaders
      Deprecated, for removal: This API element is subject to removal in a future version.
      A list of request headers that are allowed or "*" to allow all headers. Corresponds to Access-Control-Allow-Headers.
      Returns:
      Allowed headers.
      Default:
      {"*"}

    • exposeHeaders

      String[] exposeHeaders
      Deprecated, for removal: This API element is subject to removal in a future version.
      A list of response headers allowed for clients other than the "standard" ones. Corresponds to Access-Control-Expose-Headers.
      Returns:
      Exposed headers.
      Default:
      {}

    • allowMethods

      String[] allowMethods
      Deprecated, for removal: This API element is subject to removal in a future version.
      A list of supported HTTP request methods. In response to pre-flight requests. Corresponds to Access-Control-Allow-Methods.
      Returns:
      Allowed methods.
      Default:
      {"*"}

    • allowCredentials

      boolean allowCredentials
      Deprecated, for removal: This API element is subject to removal in a future version.
      Whether the client can send cookies or credentials. Corresponds to Access-Control-Allow-Credentials.
      Returns:
      Allowed credentials.
      Default:
      false

    • maxAge

      long maxAge
      Deprecated, for removal: This API element is subject to removal in a future version.
      Pre-flight response duration in seconds. After time expires, a new pre-flight request is required. Corresponds to Access-Control-Max-Age.
      Returns:
      Max age.
      Default:
      3600L