Cross-origin resource sharing (CORS) is a mechanism for client web applications loaded in one domain to interact with resources in a different domain.
By default, global CORS settings do not allow cross-origin S3 API requests. To manage CORS rules at the bucket level, deactivate the global settings or set an allowlist, then configure CORS rules by using the VMware Cloud Director Object Storage Extension tenant portal. See Working with Cross-Origin Resource Sharing Rules.
- Log in to the VMware Cloud Director cloud provider admin portal.
- From the More drop-down menu, select Object Storage.
- In the Settings tab, click Edit.
- Select a CORS configuration and click Save.
There are three CORS configuration options.
Option Description Deactivate Global CORS Cross-origin access to buckets depends on the CORS rules of the individual bucket. Activate Global CORS with any Origin Cross-origin access to buckets is allowed for all requests. Activate Global CORS with Custom Origin Allowlist Cross-origin access to buckets is allowed for requests from the origins that you specify. Access requests from other origins depend on the CORS rules of the individual bucket.