deno.land / x / abc@v1.3.3 / middleware / cors.ts

cors.ts
نووسراو ببینە
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
import type { HandlerFunc, MiddlewareFunc } from "../types.ts";import type { Skipper } from "./skipper.ts";
import { Status } from "../vendor/https/deno.land/std/http/http_status.ts";import { DefaultSkipper } from "./skipper.ts";import { Header, HttpMethod } from "../constants.ts";
export const DefaultCORSConfig: CORSConfig = {  skipper: DefaultSkipper,  allowOrigins: ["*"],  allowMethods: [    HttpMethod.Delete,    HttpMethod.Get,    HttpMethod.Head,    HttpMethod.Patch,    HttpMethod.Post,    HttpMethod.Put,  ],};
export function cors(config: CORSConfig = DefaultCORSConfig): MiddlewareFunc {  if (config.skipper == null) {    config.skipper = DefaultCORSConfig.skipper;  }  if (!config.allowOrigins || config.allowOrigins.length == 0) {    config.allowOrigins = DefaultCORSConfig.allowOrigins;  }  if (!config.allowMethods || config.allowMethods.length == 0) {    config.allowMethods = DefaultCORSConfig.allowMethods;  }
  return function (next: HandlerFunc): HandlerFunc {    return (c) => {      if (config.skipper!(c)) {        return next(c);      }      const req = c.request;      const resp = c.response;      const origin = req.headers!.get(Header.Origin)!;      if (!resp.headers) resp.headers = new Headers();
      let allowOrigin: string | null = null;      for (const o of config.allowOrigins!) {        if (o == "*" && config.allowCredentials) {          allowOrigin = origin;          break;        }        if (o == "*" || o == origin) {          allowOrigin = o;          break;        }        if (origin === null) {          break;        }        if (origin.startsWith(o)) {          allowOrigin = origin;          break;        }      }
      resp.headers.append(Header.Vary, Header.Origin);      if (config.allowCredentials) {        resp.headers.set(Header.AccessControlAllowCredentials, "true");      }
      if (req.method != HttpMethod.Options) {        if (allowOrigin) {          resp.headers.set(Header.AccessControlAllowOrigin, allowOrigin);        }        if (config.exposeHeaders && config.exposeHeaders.length != 0) {          resp.headers.set(            Header.AccessControlExposeHeaders,            config.exposeHeaders.join(","),          );        }
        return next(c);      }      resp.headers.append(Header.Vary, Header.AccessControlAllowMethods);      resp.headers.append(Header.Vary, Header.AccessControlAllowHeaders);      if (allowOrigin) {        resp.headers.set(Header.AccessControlAllowOrigin, allowOrigin);      }      resp.headers.set(        Header.AccessControlAllowMethods,        config.allowMethods!.join(","),      );      if (config.allowHeaders && config.allowHeaders.length != 0) {        resp.headers.set(          Header.AccessControlAllowHeaders,          config.allowHeaders.join(","),        );      } else {        const h = req.headers.get(Header.AccessControlRequestHeaders);        if (h) {          resp.headers.set(Header.AccessControlRequestHeaders, h);        }      }      if (config.maxAge! > 0) {        resp.headers.set(Header.AccessControlMaxAge, String(config.maxAge));      }
      resp.status = Status.NoContent;    };  };}
export interface CORSConfig {  skipper?: Skipper;  allowOrigins?: string[];  allowMethods?: string[];  allowHeaders?: string[];  allowCredentials?: boolean;  exposeHeaders?: string[];  maxAge?: number;}
abc

Version Info

Tagged at
2 years ago
گیتهەبدیسکۆڕد تویتەر
denoland/deno CIdenoland/rusty_v8 CIdenoland/deno_lint CIdenoland/deno_doc CIdenoland/dotland CI