2025-10-07: CORS Handling Updates

2025-10-07: CORS Handling Updates#

CORS Handling Updates #

Over the next few weeks, our web service APIs will adjust how they handle Cross-Origin Resource Sharing (CORS).

Our APIs will now reflect the Origin specified in the request headers in the Access-Control-Allow-Origin response header.
When Access-Control-Allow-Methods is returned, it will include all accepted HTTP methods.

This change improves consistency across services and ensures proper behavior for browser-based integrations.

Examples #

A request from https://app.example would receive:

Access-Control-Allow-Origin: https://app.example

Preflight (OPTIONS) responses will specify the supported methods, for example:

Access-Control-Allow-Methods: GET, POST

Will I Be Impacted?#

We do not anticipate that users will be impacted by this change. If you are sending requests in webpage scripts, these headers should be automatically handled by your users’ web browsers.

However, if you do experience any issues related to these changes, please reach out to our support team for assistance.

—

Thank you for your attention to this update. If you have any questions or concerns, please contact Tech Support at Tech@Melissa.com or call 800-MELISSA ext. 4 (800-635-4772 ext. 4).

Thanks,

The Melissa Team

2025-10-07: CORS Handling Updates

Contents

2025-10-07: CORS Handling Updates#

CORS Handling Updates#

Examples#

Will I Be Impacted?#

CORS Handling Updates #

Examples #