production, you may wish to compile Falcon via Cython yourself, using the target system’s native toolchain. The following commands tell pip to install Cython, and then to invoke Falcon’s setup.py, which for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as cookie with unscripted HTTP requests (default: True). This is intended to mitigate some forms of cross-site scripting. (See also: RFC 6265, Section 4.1.2.6) Raises • KeyError – name is not a valid cookie

production, you may wish to compile Falcon via Cython yourself, using the target system’s native toolchain. The following commands tell pip to install Cython, and then to invoke Falcon’s setup.py, which for a website or SPA to access an API hosted under a different domain name, that API must implement Cross-Origin Resource Sharing (CORS) [https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS]. For a public cookie with unscripted HTTP requests (default: True). This is intended to mitigate some forms of cross-site scripting. (See also: RFC 6265, Section 4.1.2.6 [https://tools.ietf.org/html/rfc6265#section-4

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed, the Content-Type header returned when the link is followed. • crossorigin (str) – Determines how cross origin requests are handled. Can take values ‘anonymous’ or ‘use-credentials’ or None. (See: https://www

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed, the Content-Type header returned when the link is followed. • crossorigin (str) – Determines how cross origin requests are handled. Can take values ‘anonymous’ or ‘use-credentials’ or None. (See: https://www

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed, the Content-Type header returned when the link is followed. • crossorigin (str) – Determines how cross origin requests are handled. Can take values ‘anonymous’ or ‘use-credentials’ or None. (See: https://www

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed, the Content-Type header returned when the link is followed. • crossorigin (str) – Determines how cross origin requests are handled. Can take values ‘anonymous’ or ‘use-credentials’ or None. (See: https://www

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as 3.1.1b3 Why is my request with authorization blocked despite cors_enable? When you are making a cross-origin request from the browser (or another HTTP client verifying CORS policy), and the request is shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed,

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as 3.1.1b1 Why is my request with authorization blocked despite cors_enable? When you are making a cross-origin request from the browser (or another HTTP client verifying CORS policy), and the request is shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed,

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as Release 3.1.1 Why is my request with authorization blocked despite cors_enable? When you are making a cross-origin request from the browser (or another HTTP client verifying CORS policy), and the request is shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed,

for a website or SPA to access an API hosted under a different domain name, that API must implement Cross- Origin Resource Sharing (CORS). For a public API, implementing CORS in Falcon can be as simple as Release 3.1.0 Why is my request with authorization blocked despite cors_enable? When you are making a cross-origin request from the browser (or another HTTP client verifying CORS policy), and the request is shouldn’t commit this file to source control; it should be generated from a template by your deployment toolchain according to the target environment (number of CPUs, etc.). This configuration, when executed,