Skip to content

CORS open source contribution to ASP.NET and System.Web.Cors

March 13, 2013

Dominick is the person who convinced me to build the CORS implementation in Thinktecture IdentityModel. I didn’t realize it would be used as much as it has. Given the popularity and the need for something built into ASP.NET (and specifically WebAPI), I submitted my CORS implementation  as a contribution to the ASP.NET web stack. Microsoft accepted my contribution and I worked with them for a couple of weeks to rework the design for inclusion into the platform.

I’m happy to announce that today Microsoft (specifically Yao, who was a pleasure to work with) did the checkin into the master branch to support CORS in the ASP.NET web stack. This means we’ll have framework support for CORS in the next release of WebAPI. It also means that I get the honor and privilege to be listed as a contributor to ASP.NET.

Yao has already provided some initial documentation here.

Edit: Here’s the Channel9 interview related to this.

14 Comments leave one →
  1. March 13, 2013 6:09 am

    Congratulations! Can you blog post a small example?

  2. March 13, 2013 6:18 am

    That is fantastic news Brock. Your CORS implementation is pretty much a must have when developing with WebAPI, so its great that it is now part of the core stack.

  3. March 13, 2013 8:28 am

    Reblogged this on

  4. March 13, 2013 8:37 pm

    awesome! good work :)

  5. March 14, 2013 6:26 pm

    Cool! Your implementation and blog helped me out a lot recently with first WebAPI project. Thanks.

  6. Markus permalink
    March 15, 2013 10:33 am

    great news!
    will the MVC part be added, too?

    • March 15, 2013 12:11 pm

      Not sure if they’ll carry forth the MVC implementation as well. If not, then I’ll provide a new library that follows the new design.

  7. March 16, 2013 12:58 pm

    Congratulations man.

  8. December 13, 2013 2:28 pm

    Hey. I’m building an ASP MVC 4 Hybrid, so I need to use the Microsoft.AspNet.Cors instead of the WebApi flavor. But all the documentation (understandingly) points to the Api one.

    • December 13, 2013 5:04 pm

      Yep, and their retort is “it’s all open source, so just go read the code” :)


  1. CORS open source contribution to ASP.NET and System.Web.Cors … | Open Hacking

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: