Access-Control-Request-Method

The Access-Control-Request-Method request header is used by browsers when issuing a preflight request, to let the server know which HTTP method will be used when the actual request is made. This header is necessary as the preflight request is always an OPTIONS and doesn't use the same method as the actual request.

Header type Request header
Forbidden header name yes

Syntax

Access-Control-Request-Method: <method>

Directives

<method>
One of the HTTP request methods, for example GET, POST, or DELETE.

Examples

Access-Control-Request-Method: POST

Specifications

Specification Status Comment
Fetch
The definition of 'Access-Control-Request-Method' in that specification.
Living Standard Initial definition.

Browser compatibility

DesktopMobile
ChromeEdgeFirefoxInternet ExplorerOperaSafariAndroid webviewChrome for AndroidFirefox for AndroidOpera for AndroidSafari on iOSSamsung Internet
Access-Control-Request-MethodChrome Full support 4Edge Full support 12Firefox Full support 3.5IE Full support 10Opera Full support 12Safari Full support 4WebView Android Full support 2Chrome Android Full support YesFirefox Android Full support 4Opera Android Full support 12Safari iOS Full support 3.2Samsung Internet Android Full support Yes

Legend

Full support
Full support

See also