Name | CORS should not allow every domain to access your API for FHIR Azure Portal |
||||||||||
Id | 0fea8f8a-4169-495d-8307-30ec335f387d | ||||||||||
Version | 1.1.0 details on versioning |
||||||||||
Category | API for FHIR Microsoft docs |
||||||||||
Description | Cross-Origin Resource Sharing (CORS) should not allow all domains to access your API for FHIR. To protect your API for FHIR, remove access for all domains and explicitly define the domains allowed to connect. | ||||||||||
Mode | Indexed | ||||||||||
Type | BuiltIn | ||||||||||
Preview | FALSE | ||||||||||
Deprecated | FALSE | ||||||||||
Effect | Default: Audit Allowed: (audit, Audit, disabled, Disabled) |
||||||||||
Used RBAC Role | none | ||||||||||
Rule Aliases | IF (1)
|
||||||||||
Rule ResourceTypes | IF (1) Microsoft.HealthcareApis/services |
||||||||||
History |
|
||||||||||
Used in Initiatives |
|
||||||||||
JSON Changes |
|
||||||||||
JSON |
|