Amazon S3 and Cross-Origin Resource Sharing (CORS)

Does Amazon S3 allow custom headers? Or am I out of luck?

Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Allow-Headers: X-SOMETHING
Access-Control-Max-Age: 1728000


var request = new XMLHttpRequest();
var url="";

function callOtherDomain(){'GET', url, true);
    request.withCredentials = "true";
    request.onreadystatechange = handler;


Currently, there is limited number of standrd http headers supported by s3.

Access-Control-Allow-* headers are not supported at this time:


Support for Cross-Origin Resource Sharing is added:

S3 Browser Freeware also supports this feature:

Today Amazon announces the complete support for CORS, so you can now use HTML5 for example for Drag & Drop files directly to Amazon S3.

The answers/resolutions are collected from stackoverflow, are licensed under cc by-sa 2.5 , cc by-sa 3.0 and cc by-sa 4.0 .
Read More:   How to solve: console.error: "redux-persist failed to create sync storage. falling back to "noop" storage

Similar Posts