CORS on Apache To add the CORS authorization to the header using Apache, simply add the following line inside either the , , or sections of your server config (usually located in a *.conf file, such as httpd.conf or apache.conf), or within a .htaccess file: Header set Access-Control-Allow-Origin "*" Header add Access-Control-Allow-Origin "*" Header add Access-Control-Allow-Headers "origin, x-requested-with, content-type" Header add Access-Control-Allow-Methods "PUT, GET, POST, DELETE, OPTIONS" To ensure that your changes are correct, it is strongly reccomended that you use apachectl -t to check your configuration changes for errors. After this passes, you may need to reload Apache to make sure your changes are applied by running the command sudo service apache2 reload or apachectl -k graceful Altering headers requires the use of mod_headers. Mod_headers is enabled by default in Apache, however, you may want to ensure it's enabled by run a2enmod headers ====================== "; echo ""; echo " Another Resource"; echo ""; echo "", "

This resource behaves two-fold:"; echo "

    ", "
  • If accessed from http://arunranga.com it returns an XML document
  • "; echo "
  • If accessed from any other origin including from simply typing in the URL into the browser's address bar,"; echo "you get this HTML document
  • ", "
", "", ""; } ?>