Here are the options:
- API definition: API definition lets us configure the location of the Swagger 2.0 metadata describing the API exposed through the App Service. This makes it easy for others to discover and consume the API.
- CORS: Cross-Origin Resource Sharing (CORS) allows JavaScript code running in a browser on an external host to interact with the App Service backend. We can specify the origins that should be allowed to make cross-origin calls.