@Generated(value="com.amazonaws:aws-java-sdk-code-generator") public classResponseHeadersPolicyAccessControlAllowOriginsextendsObjectimplementsSerializable,Cloneable A list of origins (domain names) that CloudFront can use as the value for theAccess-Control-Allow-OriginHTTP r...
当allowCredentials 设置为 true 时,表示允许跨域请求携带认证信息(如 Cookies 和 HTTP 认证信息)。在这种情况下,出于安全考虑,CORS(跨来源资源共享)规范不允许将 Access-Control-Allow-Origin 设置为特殊值 "*"。这是因为允许所有来源的跨域请求携带敏感信息(如用户认证信息)将带来严重的安全风险。
A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header. For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.Contents...
AWS::CloudFront::OriginAccessControl AWS::CloudFront::OriginRequestPolicy AWS::CloudFront::PublicKey AWS::CloudFront::RealtimeLogConfig AWS::CloudFront::ResponseHeadersPolicy AccessControlAllowHeaders AccessControlAllowMethods AccessControlAllowOrigins AccessControlExposeHeaders Con...