- Release Notes and Announcements
- Announcements
- Billing Content Adjustment for Cloud Streaming Services Standard Transcoding and Top Speed Codec Transcoding
- Announcement on the Price Adjustment of CSS Audio/Video Enhancement Feature
- Announcement on the Official Billing for CSS Standby Streams Feature
- CSS to Support H.265 8K and AV1 8K Transcoding
- CSS Adds Support for AV1 Codec and Audio/Video Enhancement
- Notice: CSS to Adjust Prices of Basic Services
- CSS to Adjust Pricing of Third-Party Relay
- Delayed Playback to Become Paid Feature
- Announcements
- User Guide
- Product Introduction
- Purchase Guide
- Pricing Overview
- Basic Services
- Value-Added Services
- Live Transcoding (Watermarking, Stream Mixing, subtitles)
- Live Audio and Video Enhancement
- Live Recording
- Time Shifting (New)
- Live Screencapture
- Live Stream Moderation
- Intelligent Porn Detection
- Live Video Caster
- Relay
- Overview of Basic Fees for Value-Added Features
- Delayed Playback
- Standby Streams
- Real-Time Log Shipping
- Prepaid plan
- Purchase Process
- Changing Billing Modes
- Refund Policy
- Viewing Bills
- Renewal
- Processing for Overdue Payments
- Billing FAQs
- Live Video Broadcasting (LVB)
- Live Event Broadcasting (LEB)
- Live Video Caster
- Console Guide
- Console Overview
- Overview
- Domain Management
- Adding Domain Names
- Push Domain Name Management
- Push Configuration
- Recording Configuration
- Time Shifting Configuration
- Screencapture and Porn Detection Configuration
- Watermark Configuration
- Callback Configuration
- Standby Stream Configuration
- Latency Control
- IP Blocklist/Allowlist Configuration
- Delayed Playback
- Moderation Configuration
- Remote Authentication Configuration
- Playback Domain Name Management
- Playback Configuration
- Playback Authentication Configuration
- Referer Configuration
- Template Configuration
- HTTPS Configuration
- Region Configuration
- Origin Server Configuration
- Bandwidth Cap Configuration
- IP Blocklist/Allowlist Configuration
- Blocking Playback by Protocol
- Latency Control
- HTTP Response Header Configuration
- Access control by region Configuration
- Remote Authentication Configuration
- Certificate Management
- Stream Management
- Package Management
- Feature Configuration
- Relay
- Billing Usage Statistics
- Monitoring
- Toolkit
- OOTB live
- CAM-Based Access Control
- Feature Guide
- Push and Playback
- Features
- Live Streaming Security
- Global CSS Service
- Callback Notifications
- How to Receive Event Notification
- Stream Pushing Notification
- Recording Event Notification
- Recording Status Event Notification
- Screencapturing Event Notification
- Live Broadcasting Image Audit Event Notification
- Live Streaming Audio Auditing Service Event Notification
- Push Error Event Notifications
- Relay Event Notification
- User Guides for Common Third-Party Tools
- SDK Guide
- API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Live Transcoding APIs
- Delayed Playback Management APIs
- Domain Name Management APIs
- Watermark Management APIs
- Certificate Management APIs
- Live Stream Mix APIs
- Stream Pulling APIs
- Recording Management APIs
- Time Shifting APIs
- Live Callback APIs
- Screencapturing and Porn Detection APIs
- Authentication Management APIs
- Monitoring Data Query APIs
- DescribeAllStreamPlayInfoList
- DescribeGroupProIspPlayInfoList
- DescribeHttpStatusInfoList
- DescribeLiveDomainPlayInfoList
- DescribeLiveStreamPushInfoList
- DescribeLiveTranscodeDetailInfo
- DescribePlayErrorCodeDetailInfoList
- DescribePlayErrorCodeSumInfoList
- DescribeProIspPlaySumInfoList
- DescribeProvinceIspPlayInfoList
- DescribeStreamDayPlayInfoList
- DescribeStreamPlayInfoList
- DescribeStreamPushInfoList
- DescribeTopClientIpSumInfoList
- DescribeVisitTopSumInfoList
- Billing Data Query APIs
- Live Stream Management APIs
- Data Types
- Error Codes
- Ops Guide
- Troubleshooting
- About Pushing
- Playing Method
- Live Streaming Quiz
- FAQs
- SLA
- CSS Policy
- Glossary
- Release Notes and Announcements
- Announcements
- Billing Content Adjustment for Cloud Streaming Services Standard Transcoding and Top Speed Codec Transcoding
- Announcement on the Price Adjustment of CSS Audio/Video Enhancement Feature
- Announcement on the Official Billing for CSS Standby Streams Feature
- CSS to Support H.265 8K and AV1 8K Transcoding
- CSS Adds Support for AV1 Codec and Audio/Video Enhancement
- Notice: CSS to Adjust Prices of Basic Services
- CSS to Adjust Pricing of Third-Party Relay
- Delayed Playback to Become Paid Feature
- Announcements
- User Guide
- Product Introduction
- Purchase Guide
- Pricing Overview
- Basic Services
- Value-Added Services
- Live Transcoding (Watermarking, Stream Mixing, subtitles)
- Live Audio and Video Enhancement
- Live Recording
- Time Shifting (New)
- Live Screencapture
- Live Stream Moderation
- Intelligent Porn Detection
- Live Video Caster
- Relay
- Overview of Basic Fees for Value-Added Features
- Delayed Playback
- Standby Streams
- Real-Time Log Shipping
- Prepaid plan
- Purchase Process
- Changing Billing Modes
- Refund Policy
- Viewing Bills
- Renewal
- Processing for Overdue Payments
- Billing FAQs
- Live Video Broadcasting (LVB)
- Live Event Broadcasting (LEB)
- Live Video Caster
- Console Guide
- Console Overview
- Overview
- Domain Management
- Adding Domain Names
- Push Domain Name Management
- Push Configuration
- Recording Configuration
- Time Shifting Configuration
- Screencapture and Porn Detection Configuration
- Watermark Configuration
- Callback Configuration
- Standby Stream Configuration
- Latency Control
- IP Blocklist/Allowlist Configuration
- Delayed Playback
- Moderation Configuration
- Remote Authentication Configuration
- Playback Domain Name Management
- Playback Configuration
- Playback Authentication Configuration
- Referer Configuration
- Template Configuration
- HTTPS Configuration
- Region Configuration
- Origin Server Configuration
- Bandwidth Cap Configuration
- IP Blocklist/Allowlist Configuration
- Blocking Playback by Protocol
- Latency Control
- HTTP Response Header Configuration
- Access control by region Configuration
- Remote Authentication Configuration
- Certificate Management
- Stream Management
- Package Management
- Feature Configuration
- Relay
- Billing Usage Statistics
- Monitoring
- Toolkit
- OOTB live
- CAM-Based Access Control
- Feature Guide
- Push and Playback
- Features
- Live Streaming Security
- Global CSS Service
- Callback Notifications
- How to Receive Event Notification
- Stream Pushing Notification
- Recording Event Notification
- Recording Status Event Notification
- Screencapturing Event Notification
- Live Broadcasting Image Audit Event Notification
- Live Streaming Audio Auditing Service Event Notification
- Push Error Event Notifications
- Relay Event Notification
- User Guides for Common Third-Party Tools
- SDK Guide
- API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Live Transcoding APIs
- Delayed Playback Management APIs
- Domain Name Management APIs
- Watermark Management APIs
- Certificate Management APIs
- Live Stream Mix APIs
- Stream Pulling APIs
- Recording Management APIs
- Time Shifting APIs
- Live Callback APIs
- Screencapturing and Porn Detection APIs
- Authentication Management APIs
- Monitoring Data Query APIs
- DescribeAllStreamPlayInfoList
- DescribeGroupProIspPlayInfoList
- DescribeHttpStatusInfoList
- DescribeLiveDomainPlayInfoList
- DescribeLiveStreamPushInfoList
- DescribeLiveTranscodeDetailInfo
- DescribePlayErrorCodeDetailInfoList
- DescribePlayErrorCodeSumInfoList
- DescribeProIspPlaySumInfoList
- DescribeProvinceIspPlayInfoList
- DescribeStreamDayPlayInfoList
- DescribeStreamPlayInfoList
- DescribeStreamPushInfoList
- DescribeTopClientIpSumInfoList
- DescribeVisitTopSumInfoList
- Billing Data Query APIs
- Live Stream Management APIs
- Data Types
- Error Codes
- Ops Guide
- Troubleshooting
- About Pushing
- Playing Method
- Live Streaming Quiz
- FAQs
- SLA
- CSS Policy
- Glossary
You can use HTTP headers to define fields that carry information about HTTP transactions. Header fields work on the domain level. This means the header fields you configure will take effect for all responses under your domain.
Prerequisites
You have logged in to the CSS console.
You have added a playback domain name.
Use Limits
You can configure at most 10 header fields.
You cannot add two fields with the same name. To specify multiple values for a field, use this format:
value 1, value 2, value 3.If a field you configure is the same as a field used by the CSS backend, you will be asked to modify it.
A custom field can be 1-100 characters long and can contain letters, numbers, and hyphens (-).
The value of a field cannot be empty. It can be 1-1,000 characters long and cannot contain Chinese characters.
Configuring HTTP Response Header
1. Go to Domain Management. Click the name of your playback domain or click Manage on the right.
2. Select the Advanced Configuration tab.
3. In the HTTP response headers area, click Edit to add new header fields or modify/delete existing header fields.
Select Preset to add a preset field: 
Access-Control-Allow-Methods, Access-Control-Max-Age, or Access-Control-Expose-Headers.
Field | Description |
Access-Control-Allow-Methods | Indicates which HTTP methods are allowed for cross-origin requests. You can specify multiple methods at a time: Access-Control-Allow-Methods: POST, GET, OPTIONS. |
Access-Control-Max-Age | Indicates how long (seconds) the results of a preflight request can be cached |
Access-Control-Expose-Headers | Indicates which headers can be exposed to clients as part of the response |
Select Custom to add a custom field.
Caution
The name of a custom field can be 1-100 characters long and can contain letters, numbers, and hyphens. The value of a custom field can be 1-1,000 characters long and cannot contain Chinese characters.
The system has default support for the header parameter Access-Control-Allow-Origin, which is used to enable cross-domain requests without the need for customization. There are two specific scenarios:
When the request header does not include Origin, the returned header will be 'Access-Control-Allow-Origin: *'.
When the request header includes 'Origin: ${Origin}', the returned header will be 'Access-Control-Allow-Origin: ${Origin}'. For example, when the request header has Origin: https://cloud.tencent.com, the returned header will be Access-Control-Allow-Origin: https://cloud.tencent.com.
Yes
No
Was this page helpful?