Add CORS support to the oEmbed endpoint

Home
Add CORS support to the oEmbed endpoint
 06-29-2018
0 Comments 
New

Right now it's impossible to use the oEmbed endpoint at https://web.microsoftstream.com/oembed from JS running in the browser on another domain as the XHR request is blocked due to cross domain security restrictions. This makes it pretty useless for lots of common use cases.

 

All you need to do is send the following header in the response:

 

Access-Control-Allow-Origin: *
0 Upvote
Comment