openstack-manuals/doc/common/tables/nova-cors.xml

<?xml version='1.0' encoding='UTF-8'?>
<para xmlns="http://docbook.org/ns/docbook" version="5.0">
  <!-- Warning: Do not edit this file. It is automatically
     generated and your changes will be overwritten.
     The tool to do so lives in openstack-doc-tools repository. -->
  <table rules="all" xml:id="config_table_nova_cors">
    <caption>Description of CORS configuration options</caption>
    <col width="50%"/>
    <col width="50%"/>
    <thead>
      <tr>
        <th>Configuration option = Default value</th>
        <th>Description</th>
      </tr>
    </thead>
    <tbody>
      <tr>
        <th colspan="2">[cors]</th>
      </tr>
      <tr>
        <td><option>allow_credentials</option> = <replaceable>True</replaceable></td>
        <td>(BoolOpt) Indicate that the actual request can include user credentials</td>
      </tr>
      <tr>
        <td><option>allow_headers</option> = <replaceable>Content-Type, Cache-Control, Content-Language, Expires, Last-Modified, Pragma</replaceable></td>
        <td>(ListOpt) Indicate which header field names may be used during the actual request.</td>
      </tr>
      <tr>
        <td><option>allow_methods</option> = <replaceable>GET, POST, PUT, DELETE, OPTIONS</replaceable></td>
        <td>(ListOpt) Indicate which methods can be used during the actual request.</td>
      </tr>
      <tr>
        <td><option>allowed_origin</option> = <replaceable>None</replaceable></td>
        <td>(StrOpt) Indicate whether this resource may be shared with the domain received in the requests "origin" header.</td>
      </tr>
      <tr>
        <td><option>expose_headers</option> = <replaceable>Content-Type, Cache-Control, Content-Language, Expires, Last-Modified, Pragma</replaceable></td>
        <td>(ListOpt) Indicate which headers are safe to expose to the API. Defaults to HTTP Simple Headers.</td>
      </tr>
      <tr>
        <td><option>max_age</option> = <replaceable>3600</replaceable></td>
        <td>(IntOpt) Maximum cache age of CORS preflight requests.</td>
      </tr>
      <tr>
        <th colspan="2">[cors.subdomain]</th>
      </tr>
      <tr>
        <td><option>allow_credentials</option> = <replaceable>True</replaceable></td>
        <td>(BoolOpt) Indicate that the actual request can include user credentials</td>
      </tr>
      <tr>
        <td><option>allow_headers</option> = <replaceable>Content-Type, Cache-Control, Content-Language, Expires, Last-Modified, Pragma</replaceable></td>
        <td>(ListOpt) Indicate which header field names may be used during the actual request.</td>
      </tr>
      <tr>
        <td><option>allow_methods</option> = <replaceable>GET, POST, PUT, DELETE, OPTIONS</replaceable></td>
        <td>(ListOpt) Indicate which methods can be used during the actual request.</td>
      </tr>
      <tr>
        <td><option>allowed_origin</option> = <replaceable>None</replaceable></td>
        <td>(StrOpt) Indicate whether this resource may be shared with the domain received in the requests "origin" header.</td>
      </tr>
      <tr>
        <td><option>expose_headers</option> = <replaceable>Content-Type, Cache-Control, Content-Language, Expires, Last-Modified, Pragma</replaceable></td>
        <td>(ListOpt) Indicate which headers are safe to expose to the API. Defaults to HTTP Simple Headers.</td>
      </tr>
      <tr>
        <td><option>max_age</option> = <replaceable>3600</replaceable></td>
        <td>(IntOpt) Maximum cache age of CORS preflight requests.</td>
      </tr>
    </tbody>
  </table>
</para>