ServiceStack conditional CROS

Question

I am wondering if it is possible to do conditional cross-domain calls to the service only when a "vendor key" is given to an authorised 3rd party.

Remotely:

When the service is called by some authorised remote server, service enables CROS feature, but a "vendor key" is required as a parameter or cookies.

Locally:

When the service is called by its own web server, ajax calls are accepted as usual. The "vendor key" parameter is not required when local server hits a CROS service.

Could you please give me some direction on how to implement it?

score 1 · Accepted Answer · edited May 23 '17 at 11:43

1

Here's the implementation of the EnableCors Request Filter Attribute.

Just change the implementation to look at the incoming IHttpRequest and only print the headers when your conditions are met.

You can also do this with a global request filter or adhoc, manually - in your service implementation.

edited May 23 '17 at 11:43

Community

1
1

answered Nov 06 '12 at 19:02

mythz

141,670
29
246
390

ServiceStack conditional CROS

1 Answers1