S3 CORS

  • Updated on Jan 30, 2026
  • Published on Jan 28, 2026
  • 1 minute(s) read
Prev Next

Cross-origin resource sharing (CORS) is a mechanism that controls how resources of a certain origin can be used from outside of that origin. CORS is configured on a bucket so that requests to fetch resources from that bucket succeed only if the bucket's CORS configuration allows using the bucket resources at origins specified in the request.

By default, the cluster does not include any CORS-related headers in its responses.

You can configure the cluster to include a Access-Control-Allow-Origin: * header with every response, which means that all origins are allowed. To do so:

  • In VAST Web UI, toggle on the Enable CORS option in cluster S3 settings (Settings -> Cluster -> S3).

  • In VAST CLI, run the cluster modify command with the --enable-s3-cors option specified.

Related articles
  • S3 CORS
    VAST Cluster > Version 5.2 > VAST Cluster 5.2 Administrator's Guide > Managing Access Protocols > S3 Object Storage Protocol > S3 Client Features
  • S3 CORS
    VAST Cluster > Version 5.1 > VAST Cluster 5.1 Administrator's Guide > Managing Access Protocols > S3 Object Storage Protocol > S3 Client Features
  • S3 CORS
    VAST Cluster > Version 5.0 > VAST Cluster 5.0 Administrator's Guide > Managing Access Protocols > S3 Object Storage Protocol > S3 Client Features