If you don't have access to configure you web server, you can still send the header from a ColdFusion script. It's a case of adding the following to your ColdFusion scripts:
<cfheader name="Access-Control-Allow-Origin" value="*">
var response = getPageContext().getResponse(); response.setHeader("Access-Control-Allow-Origin","*");
Note: This needs to be set before any output has been sent from the server.
The content on this site stays fresh thanks to help from users like you! If you have suggestions or would like to contribute, fork us on GitHub.
Save 39% on CORS in Action with promotional code hossainco at manning.com/hossain