:doc:`BucketCors <index>` / Attribute / cors_rules

**********
cors_rules
**********



.. py:attribute:: S3.BucketCors.cors_rules

  

  - *(list) --* 

    A set of origins and methods (cross-origin access that you want to allow). You can add up to 100 rules to the configuration.

    
    

    - *(dict) --* 

      Specifies a cross-origin access rule for an Amazon S3 bucket.

      
      

      - **ID** *(string) --* 

        Unique identifier for the rule. The value cannot be longer than 255 characters.

        
      

      - **AllowedHeaders** *(list) --* 

        Headers that are specified in the ``Access-Control-Request-Headers`` header. These headers are allowed in a preflight OPTIONS request. In response to any preflight OPTIONS request, Amazon S3 returns any requested headers that are allowed.

        
        

        - *(string) --* 
    
      

      - **AllowedMethods** *(list) --* 

        An HTTP method that you allow the origin to execute. Valid values are ``GET``, ``PUT``, ``HEAD``, ``POST``, and ``DELETE``.

        
        

        - *(string) --* 
    
      

      - **AllowedOrigins** *(list) --* 

        One or more origins you want customers to be able to access the bucket from.

        
        

        - *(string) --* 
    
      

      - **ExposeHeaders** *(list) --* 

        One or more headers in the response that you want customers to be able to access from their applications (for example, from a JavaScript ``XMLHttpRequest`` object).

        
        

        - *(string) --* 
    
      

      - **MaxAgeSeconds** *(integer) --* 

        The time in seconds that your browser is to cache the preflight response for the specified resource.

        
  
