[Yandex Cloud documentation](../../index.md) > [Yandex Cloud CDN](../index.md) > [Concepts](index.md) > Data exchange between clients and the CDN > CORS

# CORS in Cloud CDN

Yandex Cloud CDN supports [cross-domain requests](https://en.wikipedia.org/wiki/Cross-origin_resource_sharing) via CORS (cross-origin resource sharing).

In the resource settings, you can:

* Allow CORS requests with any origins (the `Origin` header values): Set the `Access-Control-Allow-Origin` header to `*` or to the `Origin` header’s value in the request.
* Allow CORS requests for specific origins: Set the `Access-Control-Allow-Origin` header to the value of the `Origin` header in the request, but only if it is listed as allowed in the settings.
* Deny CORS requests: Disable adding the `Access-Control-Allow-Origin` header to responses.

CORS settings apply to all files of the resource.

{% note info %}

To make sure cross-domain requests are enabled, additionally set up CORS on a source if the source supports this mechanism. For example, CORS configuration is required for [Object Storage buckets](../../storage/operations/buckets/cors.md).

{% endnote %}


#### See also {#see-also}

* [CORS configuration guide](../operations/resources/configure-cors.md).