Topic 1 Question 129
You have an application that uses an HTTP Cloud Function to process user activity from both desktop browser and mobile application clients. This function will serve as the endpoint for all metric submissions using HTTP POST. Due to legacy restrictions, the function must be mapped to a domain that is separate from the domain requested by users on web or mobile sessions. The domain for the Cloud Function is https://fn.example.com. Desktop and mobile clients use the domain https://www.example.com. You need to add a header to the function's HTTP response so that only those browser and mobile sessions can submit metrics to the Cloud Function. Which response header should you add?
Access-Control-Allow-Origin: *
Access-Control-Allow-Origin: https://*.example.com
Access-Control-Allow-Origin: https://fn.example.com
Access-Control-Allow-origin: https://www.example.com
ユーザの投票
コメント(7)
- 正解だと思う選択肢: D
I agree it should be D
👍 4GCPCloudArchitectUser2022/02/26 Should be Option D, Option A will allow all and not only specific as requested in the question
👍 3Blueocean2022/01/16I vote D
👍 2scaenruy2022/01/09
シャッフルモード