Enable cors just for get requests in asp net 6


ASP.NET is a popular programming used for web applications. One common requirement in web development is enabling Cross- Sharing (CORS) to allow requests from different domains. In this article, we will explore how to CORS specifically for GET requests in ASP.NET 6.

Enabling CORS in ASP.NET 6

To enable CORS in ASP.NET 6, we need to configure the application's middleware pipeline. The middleware pipeline is responsible for processing incoming requests and generating responses.

First, let's add the necessary CORS package to our project. Open the terminal and navigate to the project directory. Run the following command:

dotnet add package Microsoft.AspNetCore.Cors

This command will add the CORS package to our project, allowing us to configure CORS settings.

CORS for GET Requests

Next, we need to configure CORS specifically for GET requests. Open the .cs file in your project. This file contains the configuration for the application's middleware pipeline.

Inside the ConfigureServices method, add the following code:

services.AddCors(options =>
        builder =>

This code configures a CORS “AllowGetRequests” that allows GET requests from the specified origin (http://example.com) and allows any method and header.

Next, inside the Configure method, add the following code:


This code adds the CORS middleware to the pipeline and applies the “AllowGetRequests” policy to incoming requests.

Testing CORS Configuration

Now that we have configured CORS for GET requests, let's test it. Start the ASP.NET 6 application and make a GET request from a different domain. For example, you can use a tool like Postman or cURL to send a GET request to your application's endpoint.

If the CORS configuration is correct, the request should be allowed and you will receive a successful response. If the CORS configuration is incorrect or , the request will be blocked and you will receive a CORS error.


In this article, we have explored how to enable CORS specifically for GET requests in ASP.NET 6. By configuring the CORS middleware and defining a policy, we can allow GET requests from specific origins while still enforcing CORS restrictions for other types of requests. This enables secure and controlled access to our ASP.NET 6 web application from different domains.

Rate this post

Leave a Reply

Your email address will not be published. Required fields are marked *

Table of Contents