---
title: "HTTP Methods"
slug: "http-methods-1"
updated: 2025-05-21T10:13:42Z
published: 2025-05-21T10:13:42Z
stale: true
---

> ## Documentation Index
> Fetch the complete documentation index at: https://docs.qwilt.com/llms.txt
> Use this file to discover all available pages before exploring further.

# HTTP Methods

## Overview

The HTTP Methods rule sets the HTTP methods available to clients, to enable a client payload, and to set the maximum payload size (in bytes).

## Configure the Rule

Here, we'll describe how to configure the rule with the Delivery Service Management UI.

API Users may choose to [build the site configuration offline](https://api-docs.qwilt.cqloud.com/docs/CDN%20APIs/Sites%20API/prepare-the-configuration-json).

**To configure an HTTP Methods rule:**

1. [Navigate to the Select Rule dialog](/v1/docs/add-a-rule).
2. In the Select Rule dialog, choose **HTTP Methods**.
3. Set the rule attributes.

- From the **Allow Methods** dropdown, select/unselect the relevant methods.
          
          

**Note:** When the POST method is enabled, POST requests are not stored in the CDN's cache. They are proxied to the origin server for handling.
- Toggle **Allow Client Payload** On or Off to enable or disable the acceptance of payloads with incoming requests.
- Set the **Max Payload Size**, in bytes.  

![HTTPMethodsRuleNew.png](https://cdn.document360.io/fa039225-513b-46a1-ba78-a57a1f1cb7c6/Images/Documentation/HTTPMethodsRuleNew.png)

1. Choose **Add Rule**.

## SVTA Component: QW.HTTPMethodsACL

When you save the configuration version, the **QW.HTTPMethodsACL** component is added to the JSON configuration. This is a [private feature developed by Qwilt](https://api-docs.qwilt.cqloud.com/docs/CDN%20APIs/Sites%20API/Site%20Configuration%20JSON%20Format/prepare-the-configuration-json#qwilt-private-features).

This example enables the GET, POST, and PUT methods; it allows a client payload of up to ten million bytes:

```
{
  "generic-metadata-type": "MI.PrivateFeature.Qwilt.QW.HttpMethodsAcl",
  "generic-metadata-value": {
    "allowed-methods": [
      "GET",
      "POST",
      "PUT"
    ],
    "allow-client-payload": true,
    "client-payload-max-size": 10000000
  }
}
```

| Field | Valid Values | Description |
| --- | --- | --- |
| allowed-methods | POST, PUT, GET, DELETE, OPTIONS, HEAD | An array of strings specifying permitted HTTP methods |
| allow-client-payload | true, false | A boolean indicating if client request bodies are permitted. |
| client-payload-max-size | any integer (bytes) | An integer specifying the maximum allowed payload size in bytes, if `allow-client-payload` is `true`. |

          Note:

          

When the POST method is enabled, POST requests are not stored in the CDN's cache. They are proxied to the origin server for handling.