Support Cross Origin Resource Sharing (CORS) via Access-Control-Allow-Origin header
This feature has many useful applications:
* loading of JSON data without JSONP wrappers
* pre-loading Image data with progress information
* pre-loading Audio data on browsers that otherwise suppress audio preloading
We will be supporting CORS soon for blobs, tables and queues.
How soon... it's pettry basic feature :S
Just to reiterate the Access-Control-Allow-Origin header is required for WebGL textures, Canvas images - if you want to compsite, Webfonts, AJAX, WebAudio, HTML5 Video (when used as a texture) etc
I've noticed that the March release implemented some CORS support. I haven't read anywhere that this includes Blob Storage support, so is it safe to assume that this feature is still coming? Or has it already been released, and I just haven't found the documentation yet?
Sergey Savchuk commented
That would be really great!!!
I'm currently implementing web access to azure storage.
Have to use intermediate proxy that supports CORS...
I need this too.
Hello, does "soon" mean weeks or months ?
Almost 1 year we are waiting for this feature !
Is there an ETA for this? We need to know whether we should start using different storage server, or wait for this to be completed on AZURE.
Will this be enabled on Access Control as well? (when using the OAuth endpoint from a SPA)
I hope it is very soon, Scott!
Martin Svensson commented
this is a great feature for chunk uploading of large files as well
Not having this forces us to have our blob storage elsewhere so that our web app (MVC4) hosted in Azure can then download media files async. It crazy that while there is blob storage, we really can't use it for our web app until this is supported. #FAIL
This is also preventing the usage of web fonts in Firefox and IE, as they require the "Access-Control-Allow-Origin" header to render cross domain. Please allow us to add this header to our files. Its absence forces some very inconvenient workarounds (like storing files elsewhere). Both Amazon and Google support this.
Recently Amazon announced CORS support in Amazon S3.
Andy B commented
Ben Goh commented
Please add this, Microsoft. Your Azure service is just 99% awesome without this bit. Thanks in advance! :-)
This is needed on ACS endpoints too.
Jamison Morrow commented
This is currently forcing us to use Google storage for web fonts (because they support the header). Why can we add all manner of custom metadata to our blobs, control content type, encoding, etc... but not dictate which origin domains can access it?