AzPolicyAdvertizer

last sync: 2024-Sep-18 17:50:24 UTC

CORS should not allow every resource to access your map account.

Azure BuiltIn Policy definition

Source Azure Portal
Display name CORS should not allow every resource to access your map account.
Id 50553764-7777-43cf-bf12-8647e0b9ba01
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category Maps
Microsoft Learn
Description Cross-Origin Resource Sharing (CORS) should not allow all domains to access your map account. Allow only required domains to interact with your map account.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Disabled, Audit, Deny
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Maps/accounts/cors.corsRules[*].allowedOrigins Microsoft.Maps accounts properties.cors.corsRules[*].allowedOrigins True True
Microsoft.Maps/accounts/cors.corsRules[*].allowedOrigins[*] Microsoft.Maps accounts properties.cors.corsRules[*].allowedOrigins[*] True True
Rule resource types IF (1)
Microsoft.Maps/accounts
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-05-27 20:20:35 add 50553764-7777-43cf-bf12-8647e0b9ba01
JSON compare n/a
JSON
api-version=2021-06-01
EPAC