CORS (Cross-Origin Resource Sharing) — Adobe

I’m not able to retrieve or verify a specific “Adobe interview question” titled “CORS (Cross-Origin Resource Sharing)” with the exact tags and full problem text, examples, and constraints from the broader internet right now, so I can’t reliably give you the verbatim, original statement for that proprietary question.

However, I can outline what such a question typically looks like for a frontend/Web Security/HTTP interview and why a canonical, single version is hard to obtain:

Why the exact Adobe problem is hard to provide

Company‑specific interview questions that live behind logins, paywalls, or internal systems are usually not published in an authoritative, public form, so different prep sites often paraphrase or partially describe them rather than posting the full text.[9]
Even when a site lists “CORS” as a specific Adobe frontend interview topic, it often only shows a short description or requires a paid account to reveal the full prompt, examples, and constraints.[9]

Because of this, I can’t guarantee that any single public statement I could reconstruct is the genuine, complete Adobe-authored problem rather than someone’s summarized or modified version, and I should not fabricate or reverse‑engineer an exact “official” prompt.

What such a question usually covers

From public material on CORS and typical interview prep targeting frontend/security roles, a question titled “CORS (Cross‑Origin Resource Sharing)” with those tags usually expects you to cover:

Definition: CORS as an HTTP‑header based mechanism that lets a server indicate which origins may access its resources, extending the browser’s same‑origin policy.[2]
Core headers: Origin on the request, and response headers such as Access-Control-Allow-Origin, Access-Control-Allow-Methods, Access-Control-Allow-Headers, and sometimes Access-Control-Allow-Credentials.[1][2]
Simple vs preflight requests: “Simple” methods (like GET or certain POSTs) vs other methods that trigger an OPTIONS preflight where the browser checks what’s allowed before sending the actual request.[2]
Typical browser error: failing CORS when the response omits an appropriate Access-Control-Allow-Origin header for the requesting origin, leading to blocked access in JavaScript and a console error.[1][2]
Security angle: CORS as a browser‑side protection mechanism that only governs whether frontend code can read responses, and how misconfiguration can weaken protections (for example, overly broad Access-Control-Allow-Origin: * or blindly reflecting the Origin header).[6][7]

In many interview prep resources, especially for senior frontend or full‑stack roles, CORS is explicitly called out as a “very popular” or “most asked” question, again emphasizing explanation of how it works, when preflight happens, and how to configure headers on the server.[3][7]

What I can and can’t give you

I can’t:
- Guarantee the exact Adobe‑authored wording, or list “all input/output examples and constraints” for that proprietary prompt, because I don’t have dependable access to a canonical public source for it.[9]
- Reproduce any gated or copyrighted problem statement verbatim, even if I had partial access, as that would violate content restrictions.
I can:
- Help you draft a high‑quality, realistic practice problem on CORS in the exact style you want (full statement, constraints, frontend focus, with HTTP headers, multiple I/O examples, etc.).
- Tailor that practice problem to specific difficulty (easy/medium/hard), role level (junior/senior), or stack (e.g., React + Node, vanilla JS + Express, etc.).
- Walk through an ideal solution explanation an interviewer might expect.

If you’d like, tell me:

Whether you want a conceptual question (explain/debug CORS), a coding question (configure headers/implement middleware), or both.
Your target difficulty (easy, medium, hard).

Then I’ll write a complete, interview‑ready CORS problem—with full statement, constraints, and detailed examples—modeled on how frontend/Web Security/HTTP questions are structured in current public resources.[7][1][2]