首頁 探索 說明
登入
byop
/
byop-engine
2
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: 6009e0299f
分支列表 標籤列表
byop-engine
/
middleware
/
cors.go

cors.go 1.1 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"net/http"
    5. 

  5. 

  6. 	"github.com/gin-gonic/gin"
    7. 

  7. 	"github.com/sirupsen/logrus"
    8. 

  8. )
    9. 

  9. 

  10. // CORS handles Cross-Origin Resource Sharing (CORS) for the API
    11. 

  11. func CORS() gin.HandlerFunc {
    12. 

  12. 	return func(c *gin.Context) {
    13. 

  13. 		origin := c.Request.Header.Get("Origin")
    14. 

  14. 

  15. 		// Debug logging
    16. 

  16. 		logger := logrus.WithFields(logrus.Fields{
    17. 

  17. 			"origin": origin,
    18. 

  18. 			"path":   c.Request.URL.Path,
    19. 

  19. 			"method": c.Request.Method,
    20. 

  20. 		})
    21. 

  21. 		logger.Debug("CORS request received")
    22. 

  22. 

  23. 		// For development, allow all origins
    24. 

  24. 		// In production, you would want to restrict this
    25. 

  25. 		if origin != "" {
    26. 

  26. 			c.Header("Access-Control-Allow-Origin", origin)
    27. 

  27. 			c.Header("Access-Control-Allow-Credentials", "true")
    28. 

  28. 			c.Header("Access-Control-Allow-Methods", "GET, POST, PUT, PATCH, DELETE, OPTIONS")
    29. 

  29. 			c.Header("Access-Control-Allow-Headers", "Origin, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, Accept, X-Requested-With")
    30. 

  30. 			c.Header("Access-Control-Expose-Headers", "Content-Length, Content-Type, Authorization")
    31. 

  31. 		}
    32. 

  32. 

  33. 		// Handle preflight requests
    34. 

  34. 		if c.Request.Method == http.MethodOptions {
    35. 

  35. 			c.AbortWithStatus(http.StatusOK)
    36. 

  36. 			return
    37. 

  37. 		}
    38. 

  38. 

  39. 		c.Next()
    40. 

  40. 	}
    41. 

  41. }
    42.