ElasticSearch ignores the property 'http.cors.allow-methods'

motty.green · March 29, 2016, 8:36am

Hi All,

I have added both parameters to elasticsearch.yml:

http.cors.enabled : true
http.cors.allow-methods : GET, POST, PUT, DELETE

OPTIONS & HEAD are not allowed - and still i can access to ElasticSearch with postman with these methods and get 200 OK response instead of bad request.

10x

warkolm · March 29, 2016, 9:06am

These are not valid yml.

http.cors.enabled: true
http.cors.allow-methods: GET, POST, PUT, DELETE

Is the correct syntax.

motty.green · March 29, 2016, 9:10am

Do you know how it should be ?
i also tried:
http.cors.allow-methods: ["GET","POST"]

Topic		Replies	Views
Elasticsearch not allowing POST requests Elasticsearch	4	3084	October 1, 2019
ElasticSearch allows only GET requests Elasticsearch	2	454	July 5, 2017
[ES 5.0] PUT/POST are forbidden if enable CORS Elasticsearch	5	5227	January 3, 2017
CORS and other settings with AWS ES Elasticsearch	4	1771	May 8, 2018
Elasticsearch not working with CORS Elasticsearch	2	4143	April 21, 2017

ElasticSearch ignores the property 'http.cors.allow-methods'

Related topics