Configure object storage settings and access controls.
Details of your object storage bucket.
Create a CORS Policy for your object storage bucket.
Access-Control-Allow-Methods
header that R2 sets when a browser requests objects from your bucket. You can select any of the following HTTP methods: GET
, PUT
, POST
, DELETE
, and HEAD
.Access-Control-Allow-Origin
header that R2 sets when a browser requests objects from your bucket. This is the origin from which the request is being made; for example, if the site www.example.com
needs access to your bucket, enter www.example.com
as the allowed origin.Access-Control-Allow-Headers
header that R2 sets when a browser sends cross-origin requests to your bucket. If your requests include custom headers, such as x-user-id
or x-auth-token
, you need to add them here so the browser permits them.Define your CORS policy.
Enable public access to your object storage instance.
Delete object storage.