![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 32%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EUG%3C/text%3E%3C/svg%3E)
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,457 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 10%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
@Upasana Ghosh Thank you for reaching out to Microsoft Q&A. Based on the statement above, you can use cors policy to set allowed origins, methods, headers etc. and refer doc for more info.
Note, there is attribute terminate-unmatched-request which controls the processing of cross-origin requests and see the description below:
For non-flight requests such as GET, HEAD You might see empty 200 response based on the default value (true) and hence you would have to set the attribute to false as mentioned in Scenario 7: terminate-unmatched-request in the blog.
I hope this answers your question and feel free to add a comment if you have any other questions. We would be happy to assist you. Please ‘Upvote’ if it helped so that it can help others in the community.
