All courses > Information Technology > Backend development ::

12. Working with CORS in NodeJS

Página 80

Chapter 12: Working with CORS in NodeJS

CORS, or Cross-Origin Resource Sharing, is a crucial technology for modern web developers. It's a way to allow a website to access resources from another website, even if they are on different domains. In simple terms, it is a policy that determines whether a browser should allow a script running on a page to access resources on another domain.

When working with APIs in NodeJS, it is common to encounter CORS issues. This is because, by default, the browser's Same-Origin Policy prevents sites from accessing resources on other sites. This policy is an important security measure, but it can be an obstacle when developing APIs that must be accessible from different domains.

To work around this problem, we can use the NodeJS CORS module. This module adds the necessary CORS headers to server responses, allowing browsers to access the API from different domains.

To start working with CORS in NodeJS, you first need to install the module. This can easily be done with npm, the NodeJS package manager. Just open the terminal and type the following command:


npm install cors

Once installed, you can start using the module in your code. First, you need to import it into your file. This is done with the command require:


const cors = require('cors')

Next, you need to use CORS middleware in your application. This is done with the use method of the Express application object:


app.use(cors())

With this, your NodeJS server is configured to accept requests from any domain. However, in a production environment you will probably want to restrict access to certain domains. This can be done by passing an options object to the function cors:


app.use(cors({
  origin: 'http://mysite.com'
}))

This configuration will only allow the domain 'http://mysite.com' to access your API.

In addition to the home domain, there are many other options you can configure. For example, you can specify which HTTP methods are allowed with the methods option:


app.use(cors({
  origin: 'http://mysite.com',
  methods: ['GET', 'POST']
}))

This configuration will allow the domain 'http://mysite.com' to make GET and POST requests to your API, but not PUT or DELETE, for example.

Another useful option is credentials. If set to true, this will allow browsers to include cookies in requests to your API. This is useful if you are using sessions or token-based authentication:


app.use(cors({
  origin: 'http://mysite.com',
  methods: ['GET', 'POST'],
  credentials: true
}))

Working with CORS in NodeJS is essential to create secure and accessible APIs. While it might seem complicated at first, the CORS module makes the process quite simple. With just a few lines of code, you can configure your API to accept requests from different domains, while still maintaining control over which domains have access and which HTTP methods they can use.

In short, CORS is a crucial part of web security and an important topic for any NodeJS developer to understand. By mastering CORS, you'll be one step closer to building robust and secure APIs in NodeJS.

Now answer the exercise about the content:

What is CORS and how is it used in NodeJS?

You are right! Congratulations, now go to the next page

You missed! Try again.

Next page of the Free Ebook:

8113. Error handling in NodeJS

Earn your Certificate for this Course for Free! by downloading the Cursa app and reading the ebook there. Available on Google Play or App Store!

Get it on Google Play Get it on App Store

This article belongs to the Free Ebook:

How to create APIs in NodeJS from basic to advanced

New course

149 pages

Free online courses onBackend development

Boost your skills in server-side programming, API creation, database management, and scalable architectures. Master the art of Backend Development with our free course.

Free online courses onInformation Technology

Our IT free online courses offer top-notch training in the latest technologies and tools, including programming languages, web development, cybersecurity, and more.

+ 6.5 million
students

Free and Valid
Certificate with QR Code

48 thousand free
exercises

4.8/5 rating in
app stores

Free courses in
video, audio and text

Information Technology216 courses Web Development, 36 courses | Multipurpose Programming Languages ( Python, Ruby, Java, C ), 21 courses | App Development, 23 courses | Office productivity, 21 courses | Information security, 6 courses | Database, 19 courses | Software testing, 7 courses | Artificial Intelligence, 10 courses | Basic informatics, 9 courses | IT Tools, 14 courses | Game development, 10 courses | Web Servers and Networks, 15 courses | Operational Systems, 6 courses | Programming logic, 7 courses | Backend development, 9 courses | Maintenance of computers and notebooks, 4 courses |
Languages97 courses French, 13 courses | Spanish, 14 courses | English, 17 courses | German, 14 courses | Japanese, 9 courses | Korean, 7 courses | Russian, 6 courses | Italian, 8 courses | Portuguese, 2 courses | Chinese / Mandarin, 4 courses | Sign language, 2 courses | Polish, 1 courses |
Business administration75 courses Digital Marketing, 19 courses | Management, 7 courses | Entrepreneurship, 5 courses | Human resources, 4 courses | Investments, 9 courses | Accounting, 5 courses | Purchasing management, 1 courses | Corporate Finances, 5 courses | Project management, 8 courses | Sales, 7 courses | Political, 5 courses |
Professional courses95 courses Electrician, 16 courses | Engineering and Mechanics, 4 courses | Customer Service, 10 courses | Construction, 7 courses | Culinary, 12 courses | Fashion, cutting and sewing, 5 courses | Logistics and Supply chain, 3 courses | Barbershop, 3 courses | Mobile phone repairs, 3 courses | Welding, 3 courses | Woodworking, 4 courses | Property and Private Security, 1 courses | Agribusiness and the Environment, 1 courses | Other Professions, 7 courses | Realtor, 2 courses | Cashier and Bank teller, 4 courses | Refrigeration and air conditioning, 2 courses | Crafts, 1 courses | Journalism, 3 courses | Car maintenance, 4 courses |
Health43 courses First aid, 6 courses | Nutrition and weight loss, 5 courses | Psychology, 8 courses | Physiotherapy, 5 courses | Physical education, 5 courses | Anatomy and Physiology, 5 courses | Nursing, 6 courses | Pharmacology, 3 courses |
Design and Art51 courses Graphic design, 12 courses | UX - User Experience, 11 courses | Image editing, 7 courses | Drawing and Painting, 7 courses | Architectural design, 8 courses | Video edition, 6 courses |
Basic studies72 courses Algebra, 7 courses | Physics, 8 courses | Biology, 7 courses | History, 8 courses | Economics, 4 courses | Logical Reasoning, 2 courses | Literature, 4 courses | Sociology, 3 courses | Geography, 4 courses | Calculus, 4 courses | Statistics, 5 courses | Chemistry, 5 courses | Geometry, 4 courses | Trigonometry, 5 courses | Philosophy, 2 courses |
Instruments and Vocal26 courses Sing, 6 courses | Guitar, 5 courses | Piano, 4 courses | Drums, 2 courses | Flute, 2 courses | Violin, 2 courses | Bass, 2 courses | Eletric Guitar, 1 courses | Saxophone, 2 courses |
Esthetics16 courses Skin care, 3 courses | Eyebrow design, 4 courses | Makeup, 3 courses | Nails, manicure and pedicure, 5 courses | Hair care, 1 courses |
Others42 courses Sports, 11 courses | Photography, 7 courses | Massage therapy, 4 courses | Magic and Hypnosis, 2 courses | Table and Card games, 2 courses | Astrology, 2 courses | Astronomy, 4 courses | Theater and Film making, 3 courses | Youtuber, 2 courses | Robotics, 3 courses | Theology, 1 courses | Dance, 1 courses |

This site and the application have been developed with the goal of helping people find free courses more easily, because there are many good and free content on youtube, but many people are not aware of this.
[email protected]

MEDEIROS TECNOLOGIA LTDA - CNPJ 24.471.978/0001-08

Access in other languages:

Spanish French Portuguese Hindi

Night mode

Get it on Google Play Get it on App Store
DMCA.com Protection Status