Back to article
Cross Origin Resource Sharing
Work through each question. Reveal the answer when you're ready to check.
0 / 7 revealed
Q1Easycorsbrowser-securityhttp
What is CORS and why does it exist?
Q2Easycorssame-origin-policybrowser-security
What is the Same-Origin Policy (SOP)?
Q3Mediumcorspreflight-requestoptions-method
What is a CORS preflight request?
Q4Mediumcorscredentialscookies
Why does Access-Control-Allow-Origin: * fail with credentials?
Q5Mediumcorsresponse-headersapi-security
What are the most important CORS response headers?
Q6Hardcorssecurity-misconfigurationapi-security
Why is reflecting arbitrary origins dangerous in CORS?
Q7Hardcorscsrfbrowser-security
What is the relationship between CORS and CSRF?