> ## Documentation Index
> Fetch the complete documentation index at: https://docs.gcore.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Specify HTTP methods allowed for content requests from the CDN

You can choose HTTP methods for your CDN content. By default, the following methods are allowed:

* GET
* HEAD
* POST
* PUT
* PATCH
* DELETE
* OPTIONS

To manage allowed HTTP method:

1\. In the Gcore Customer Portal, navigate to **CDN**. You'll be directed to the **CDN resources** page.

2\. Find the needed resource and click on its CNAME to open the settings.

<Frame>
  <img src="https://mintcdn.com/gcore/dxycBbQXMfI-sCbi/images/docs/cdn/cdn-resource-options/security/specify-http-methods-allowed-for-content-requests-from-the-cdn/cdn-resources-cname.png?fit=max&auto=format&n=dxycBbQXMfI-sCbi&q=85&s=17e4953cefb48130c689dfc988197b8d" alt="CDN resources page with a resource CNAME highlighted" width="5388" height="1288" data-path="images/docs/cdn/cdn-resource-options/security/specify-http-methods-allowed-for-content-requests-from-the-cdn/cdn-resources-cname.png" />
</Frame>

3\. Scroll down to the **HTTP methods** section and click the **Enable HTTP methods** toggle to specify the necessary methods. The other methods you haven't specified will be blocked.

<Frame>
  <img src="https://mintcdn.com/gcore/dxycBbQXMfI-sCbi/images/docs/cdn/cdn-resource-options/security/specify-http-methods-allowed-for-content-requests-from-the-cdn/http-methods-section.png?fit=max&auto=format&n=dxycBbQXMfI-sCbi&q=85&s=b9aac7033da8aa3b91ba0e19fc2e0eb7" alt="HTTP methods section in resource settings" width="2648" height="1088" data-path="images/docs/cdn/cdn-resource-options/security/specify-http-methods-allowed-for-content-requests-from-the-cdn/http-methods-section.png" />
</Frame>

The most used methods are GET, HEAD, and POST. Thus, we suggest allowing at least these ones.

If some methods aren't allowed to the user, that user will get the **405 (Method Not Allowed)** response. If the method isn't supported by your server, the user will get the **501 (Not Implemented)** response.
