Edit the WordPress configuration file for Apache (/opt/bitnami/apache/conf/vhosts/wordpress-vhost.conf) and add the following line inside the Directory directive:
... <Directory /opt/bitnami/wordpress/> ... Header set Access-Control-Allow-Origin "*" ... </Directory>
Enable other methods or headers for other directories (e.g /opt/bitnami/wordpress/wp-admin):
... <Directory /opt/bitnami/wordpress/wp-admin> ... Header set Access-Control-Allow-Origin "\*" Header set Access-Control-Allow-Methods "GET, OPTIONS, POST" Header set Access-Control-Allow-Headers "origin, x-requested-with, content-type, accept" ... </Directory>
If the request is an OPTIONS request, the script exits with either access control headers sent, or a 403 response if the origin is not allowed. By default, only the server where the application is hosted is allowed (see /opt/bitnami/wordpress/wp-includes/http.php). For other request methods, you will receive a return value.