movie-web/backend
1
0
Fork 0
mirror of https://github.com/movie-web/backend.git synced 2025-09-13 18:13:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

allow any domain config setting

Browse Source
This commit is contained in:
mrjvs
2023-11-05 13:29:12 +01:00
parent 241b1b1f47
commit b1a79242aa
3 changed files with 8 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/config/fragments/dev.ts
View File

@@ -2,7 +2,7 @@ import { FragmentSchema } from '@/config/fragments/types';
export const devFragment: FragmentSchema = { export const devFragment: FragmentSchema = {
server: { server: {
cors: 'http://localhost:5173', allowAnySite: true,
trustProxy: true, trustProxy: true,
}, },
logging: { logging: {

4
src/config/schema.ts
View File

@@ -9,6 +9,10 @@ export const configSchema = z.object({
// space seperated list of allowed cors domains // space seperated list of allowed cors domains
cors: z.string().default(''), cors: z.string().default(''),
// disable cross origin restrictions, allow any site.
// overwrites the cors option above
allowAnySite: z.coerce.boolean().default(false),
// should it trust reverse proxy headers? (for ip gathering) // should it trust reverse proxy headers? (for ip gathering)
trustProxy: z.coerce.boolean().default(false), trustProxy: z.coerce.boolean().default(false),

4
src/modules/fastify/index.ts
View File

@@ -56,8 +56,10 @@ export async function setupFastify(): Promise<FastifyInstance> {
// plugins // plugins
log.info(`setting up plugins`, { evt: 'setup-plugins' }); log.info(`setting up plugins`, { evt: 'setup-plugins' });
const corsDomains = conf.server.cors.split(' ').filter((v) => v.length > 0);
const corsSetting = conf.server.allowAnySite ? true : corsDomains;
await app.register(cors, { await app.register(cors, {
origin: conf.server.cors.split(' ').filter((v) => v.length > 0), origin: corsSetting,
credentials: true, credentials: true,
}); });