Sample code for 30+ languages & platforms
Delphi ActiveX

Azure Storage: CORS Preflight Blob Request

See more Azure Cloud Storage Examples

Azure Storage Blob Service REST API: Sample code to send a CORS pre-flight blob request.

Chilkat Delphi ActiveX Downloads

Delphi ActiveX
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Integer;
rest: TChilkatRest;
bTls: Integer;
port: Integer;
bAutoReconnect: Integer;
azAuth: TChilkatAuthAzureStorage;
responseStr: WideString;

begin
success := 0;

// Azure Blob Service Example: CORS Preflight Blob Request
// See also: https://msdn.microsoft.com/en-us/library/azure/dn535599.aspx

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

rest := TChilkatRest.Create(Self);

// Connect to the Azure Storage Blob Service
bTls := 1;
port := 443;
bAutoReconnect := 1;
// In this example, the storage account name is "chilkat".
success := rest.Connect('chilkat.blob.core.windows.net',port,bTls,bAutoReconnect);
if (success <> 1) then
  begin
    Memo1.Lines.Add(rest.LastErrorText);
    Exit;
  end;

// Provide Azure Cloud credentials for the REST call.
azAuth := TChilkatAuthAzureStorage.Create(Self);
azAuth.AccessKey := 'AZURE_ACCESS_KEY';
// The account name used here should match the 1st part of the domain passed in the call to Connect (above).
azAuth.Account := 'chilkat';
azAuth.Scheme := 'SharedKey';
azAuth.Service := 'Blob';
// This causes the "x-ms-version: 2021-08-06" header to be automatically added.
azAuth.XMsVersion := '2021-08-06';
success := rest.SetAuthAzureStorage(azAuth.ControlInterface);

// Note: The application does not need to explicitly set the following
// headers: x-ms-date, Authorization.  These headers
// are automatically set by Chilkat.

// The preflight blob request requires the following two HTTP headers.
// The Origin is the domain from which the actual request will be issued.
success := rest.AddHeader('Origin','www.contoso.com');
// The Access-Control-Request-Method is the HTTP method (such as GET, POST, PUT, etc.) of the actual request.
success := rest.AddHeader('Access-Control-Request-Method','PUT');

// The expected response is a 202 response status code with no response body.
// The name of the container or blob resource in this example is "test". (Replace "test" with your container name.)
responseStr := rest.FullRequestNoBody('OPTIONS','/test');
if (rest.LastMethodSuccess <> 1) then
  begin
    Memo1.Lines.Add(rest.LastErrorText);
    Exit;
  end;

// When successful, the Azure Storage service will respond with a 200 response code,
// with no response body.

// If CORS is not enabled or no matching rule is found for the request, 
// then a 403 status code is returned, with the following status text:
// "CORS not enabled or no matching rule found for this request."
if (rest.ResponseStatusCode <> 200) then
  begin
    // Examine the request/response to see what happened.
    Memo1.Lines.Add('response status code = ' + IntToStr(rest.ResponseStatusCode));
    Memo1.Lines.Add('response status text = ' + rest.ResponseStatusText);
    Memo1.Lines.Add('response header: ' + rest.ResponseHeader);
    Memo1.Lines.Add('response body (if any): ' + responseStr);
    Memo1.Lines.Add('---');
    Memo1.Lines.Add('LastRequestStartLine: ' + rest.LastRequestStartLine);
    Memo1.Lines.Add('LastRequestHeader: ' + rest.LastRequestHeader);
    Exit;
  end;

Memo1.Lines.Add('Success: Preflight Blob Request is accepted.');
end;