plume - v1.0.0

plume/cross_origin_resource_policy

Cross-Origin Resource Policy (CORP)

This response header determines which origins are allowed to read no-cors resource responses (e.g. those triggered by <script> and <img>).

See the MDN docs.

Types

CrossOriginResourcePolicy

</>

A Cross-Origin-Resource-Policy header value.

pub type CrossOriginResourcePolicy {
  SameSite
  SameOrigin
  CrossOrigin
}

Constructors 

  • SameSite

    Restricts reads to requests from the same site (matched by registrable domain). Less secure than SameOrigin.

  • SameOrigin

    Restricts reads to requests sharing the same origin (same scheme, host, and port). Plume default.

  • CrossOrigin

    Permits reads from any origin. Useful when paired with Cross-Origin-Embedder-Policy.

Values

to_string

</> 
pub fn to_string(value: CrossOriginResourcePolicy) -> String

Encode as the Cross-Origin-Resource-Policy header value.

Search Document