Access-Control-Request-Method

Baseline Widely available

This feature is well established and works across many devices and browser versions. It’s been available across browsers since July 2015.

The HTTP Access-Control-Request-Method request header is used by browsers when issuing a preflight request to let the server know which HTTP method will be used when the actual request is made. This header is necessary because the preflight request is always an OPTIONS and doesn't use the same method as the actual request.

Header type Request header
Forbidden header name Yes

Syntax

http
Access-Control-Request-Method: <method>

Directives

<method>

An HTTP request method; for example, GET, POST, or DELETE.

Examples

http
Access-Control-Request-Method: POST

Specifications

Specification
Fetch Standard
# http-access-control-request-method

Browser compatibility

BCD tables only load in the browser

See also