Skip to content

CORS open source contribution to ASP.NET and System.Web.Cors

March 13, 2013

Dominick is the person who convinced me to build the CORS implementation in Thinktecture IdentityModel. I didn’t realize it would be used as much as it has. Given the popularity and the need for something built into ASP.NET (and specifically WebAPI), I submitted my CORS implementation¬† as a contribution to the ASP.NET web stack. Microsoft accepted my contribution and I worked with them for a couple of weeks to rework the design for inclusion into the platform.

I’m happy to announce that today Microsoft (specifically Yao, who was a pleasure to work with) did the checkin into the master branch¬†to support CORS in the ASP.NET web stack. This means we’ll have framework support for CORS in the next release of WebAPI. It also means that I get the honor and privilege to be listed as a contributor to ASP.NET.

Yao has already provided some initial documentation here.

Edit: Here’s the Channel9 interview related to this.

14 Comments leave one →
  1. March 13, 2013 6:09 am

    Congratulations! Can you blog post a small example?

  2. March 13, 2013 6:18 am

    That is fantastic news Brock. Your CORS implementation is pretty much a must have when developing with WebAPI, so its great that it is now part of the core stack.

  3. March 13, 2013 8:28 am

    Reblogged this on

  4. March 13, 2013 8:37 pm

    awesome! good work :)

  5. March 14, 2013 6:26 pm

    Cool! Your implementation and blog helped me out a lot recently with first WebAPI project. Thanks.

  6. Markus permalink
    March 15, 2013 10:33 am

    great news!
    will the MVC part be added, too?

    • March 15, 2013 12:11 pm

      Not sure if they’ll carry forth the MVC implementation as well. If not, then I’ll provide a new library that follows the new design.

  7. March 16, 2013 12:58 pm

    Congratulations man.

  8. December 13, 2013 2:28 pm

    Hey. I’m building an ASP MVC 4 Hybrid, so I need to use the Microsoft.AspNet.Cors instead of the WebApi flavor. But all the documentation (understandingly) points to the Api one.

    • December 13, 2013 5:04 pm

      Yep, and their retort is “it’s all open source, so just go read the code” :)


  1. CORS open source contribution to ASP.NET and System.Web.Cors … | Open Hacking

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: