Leading Through Change with Data
COVID-19 Data Hub
COVID-19 Global Daily Tracker
Global Economy Data Track
Government Data Track
Healthcare Data Track
Leading Through Change
Leading Through Change Blog
< Back to List
Support CORS in Force.com sites
We already have Clickjack Protection in Force.com sites, which sets the x-frame-options header to useful values. It would be very useful if we also had the ability to set the Access-Control-Allow-Origin header to enable cross origin resource sharing.
- 2 years ago
- 4 years ago
Yes, please deliver Access-Control-Allow-Origin header support for all the /services/data/vNEXT/* endpoints. It's one effing http header that we need, and not just for some arbitrary subset like chatter.
It seems the current salesforce strategy is "1: wait until the CORS feature request Idea has enough votes – 2: possibly implement some really small subset of the feature – 3: close the Idea, marking it Delivered – 4: get new user feature request for same feature – 5: goto 1".
Previously closed feature requests for this:
https://success.salesforce.com/ideaView?id=08730000000ZojFAAS - "delivered" winter 2015
https://success.salesforce.com/ideaView?id=08730000000lBEZAA2 - "delivered" summer 2016
- 5 years ago
The Landmark © One Market St.,
San Francisco, CA 94105
If you can't find what you're looking for,
contact Salesforce Customer Support.
Powered by Community Cloud.
Learn More >
Help us to keep IdeaExchange clean by pointing out overlapping ideas. We'll investigate your suggestion and merge the ideas if it makes sense.
Thanks for your merge suggestion. We will review it shortly and merge the ideas if applicable.
Salesforce takes abuse situations very seriously. Examples of abuse include but are not limited to posting of offensive language or fraudulent statements. To help us process your request as quickly as possible, please fill out the form below describing the situation. For privacy and security reasons, the final outcome of an abuse case may not be revealed to the person who reported it.
Thank you for your feedback. We take abuse seriously and will investigate this issue and take appropriate action.