Cross-origin resource sharing (also known as CORS) can be enabled on the SAS Web Server by editing the sas.conf file in the SAS-configuration-directory/LevN/Web/WebServer/conf/ directory. To edit the file, add the following lines:
Header always set Access-Control-Allow-Origin "*"
Header always set Access-Control-Allow-Credentials "true"
Header always set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE, PUT"
Header always set Access-Control-Max-Age "1000"
Header always set Access-Control-Allow-Headers "X-Requested-With, Content-Type, Origin, Authorization, Accept, Client-Security-Token, Accept-Encoding"
You can add these lines at the beginning of the file (for example, at line #10). Or, if you use HTTPS as the protocol, you need to add the lines inside the <VirtualHost _default_:nnn> tag. This tag is in the httpd-ssl.conf file that resides in SAS-configuration-directory\LevN\Web\WebServer\conf\extra\.
For more information regarding CORS, see the following resources: