This is the new *Amazon CloudFormation Template Reference Guide*. Please update your bookmarks and links. For help getting started with CloudFormation, see the [Amazon CloudFormation User Guide](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/Welcome.html). # AWS::MediaStore::Container CorsRule A rule for a CORS policy. You can add up to 100 rules to a CORS policy. If more than one rule applies, the service uses the first applicable rule listed. ## Syntax To declare this entity in your Amazon CloudFormation template, use the following syntax: ### JSON ``` { "[AllowedHeaders](#cfn-mediastore-container-corsrule-allowedheaders)" : [ String, ... ], "[AllowedMethods](#cfn-mediastore-container-corsrule-allowedmethods)" : [ String, ... ], "[AllowedOrigins](#cfn-mediastore-container-corsrule-allowedorigins)" : [ String, ... ], "[ExposeHeaders](#cfn-mediastore-container-corsrule-exposeheaders)" : [ String, ... ], "[MaxAgeSeconds](#cfn-mediastore-container-corsrule-maxageseconds)" : Integer } ``` ### YAML ``` [AllowedHeaders](#cfn-mediastore-container-corsrule-allowedheaders): - String [AllowedMethods](#cfn-mediastore-container-corsrule-allowedmethods): - String [AllowedOrigins](#cfn-mediastore-container-corsrule-allowedorigins): - String [ExposeHeaders](#cfn-mediastore-container-corsrule-exposeheaders): - String [MaxAgeSeconds](#cfn-mediastore-container-corsrule-maxageseconds): Integer ``` ## Properties `AllowedHeaders` Specifies which headers are allowed in a preflight `OPTIONS` request through the `Access-Control-Request-Headers` header. Each header name that is specified in `Access-Control-Request-Headers` must have a corresponding entry in the rule. Only the headers that were requested are sent back. This element can contain only one wildcard character (\$1). *Required*: No *Type*: Array of String *Minimum*: `0` *Maximum*: `100` *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `AllowedMethods` Identifies an HTTP method that the origin that is specified in the rule is allowed to execute. Each CORS rule must contain at least one `AllowedMethods` and one `AllowedOrigins` element. *Required*: No *Type*: Array of String *Minimum*: `1` *Maximum*: `4` *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `AllowedOrigins` One or more response headers that you want users to be able to access from their applications (for example, from a JavaScript `XMLHttpRequest` object). Each CORS rule must have at least one `AllowedOrigins` element. The string value can include only one wildcard character (\$1), for example, http://\$1.example.com. Additionally, you can specify only one wildcard character to allow cross-origin access for all origins. *Required*: No *Type*: Array of String *Minimum*: `1` *Maximum*: `100` *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `ExposeHeaders` One or more headers in the response that you want users to be able to access from their applications (for example, from a JavaScript `XMLHttpRequest` object). This element is optional for each rule. *Required*: No *Type*: Array of String *Minimum*: `0` *Maximum*: `100` *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `MaxAgeSeconds` The time in seconds that your browser caches the preflight response for the specified resource. A CORS rule can have only one `MaxAgeSeconds` element. *Required*: No *Type*: Integer *Minimum*: `0` *Maximum*: `2147483647` *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)