cartodb4/Windshaft-cartodb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
b2da00900f
Windshaft-cartodb/lib/api/middlewares/cors.js

25 lines
605 B
JavaScript
Raw Normal View History

Use strict mode in modules under lib folder (except lib/cartodb/models/resource-locator.js)
2018-10-23 23:45:42 +08:00
'use strict';
Make cors middleware more generic and link it just to application level
2018-04-03 21:32:29 +08:00
module.exports = function cors () {
Middleware naming convention
2018-03-02 01:46:04 +08:00
return function corsMiddleware (req, res, next) {
Make cors middleware more generic and link it just to application level
2018-04-03 21:32:29 +08:00
const headers = [
'X-Requested-With',
'X-Prototype-Version',
adding Authorization to Access-Control-Allow-Headers
2019-01-10 23:56:07 +08:00
'X-CSRF-Token',
Allow metrics custom headers in cors
2020-02-13 19:52:20 +08:00
'Authorization',
Rename headers for metrics
2020-02-18 00:07:26 +08:00
'Carto-Event',
'Carto-Event-Source',
'Carto-Event-Group-Id'
Make cors middleware more generic and link it just to application level
2018-04-03 21:32:29 +08:00
];
Middleware naming convention
2018-03-02 01:46:04 +08:00
Make cors middleware more generic and link it just to application level
2018-04-03 21:32:29 +08:00
if (req.method === 'OPTIONS') {
headers.push('Content-Type');
Manage cors with a middleware
2015-07-08 19:27:56 +08:00
}
Middleware naming convention
2018-03-02 01:46:04 +08:00
Apply automatic eslint fixes
2019-10-22 01:07:24 +08:00
res.set('Access-Control-Allow-Origin', '*');
res.set('Access-Control-Allow-Headers', headers.join(', '));
Middleware naming convention
2018-03-02 01:46:04 +08:00
Manage cors with a middleware
2015-07-08 19:27:56 +08:00
next();
};
Set headers with set method
2015-09-17 08:03:09 +08:00
};
Reference in New Issue Copy Permalink