The Access-Control-Request-Method request header is used when issuing a preflight request to let the server know which HTTP method will be used when the actual request is made. This header is necessary as the preflight request is always an OPTIONS and doesn't use the same method as the actual request.

Header type Request header
Forbidden header name yes


Access-Control-Request-Method: <method>


One of the HTTP request methods, for example GET, POST, or DELETE.


Access-Control-Request-Method: POST


Specification Status Comment
The definition of 'Access-Control-Request-Method' in that specification.
Living Standard Initial definition.

Browser compatibility

FeatureChromeEdgeFirefoxInternet ExplorerOperaSafari
Basic support4123.510124
FeatureAndroid webviewChrome for AndroidEdge mobileFirefox for AndroidIE mobileOpera AndroidiOS Safari
Basic support2.1 Yes Yes4 Yes123.2

See also

Document Tags and Contributors

 Contributors to this page: fscholz, teoli
 Last updated by: fscholz,