Software: Apache/2.4.41 (Ubuntu). PHP/8.0.30 uname -a: Linux apirnd 5.4.0-204-generic #224-Ubuntu SMP Thu Dec 5 13:38:28 UTC 2024 x86_64 uid=33(www-data) gid=33(www-data) groups=33(www-data) Safe-mode: OFF (not secure) /var/www/html/wincloud_gateway/node_modules/strapi/lib/middlewares/cors/ drwxr-xr-x | |
| Viewing file: Select action/file-type: 'use strict';
/**
* Module dependencies
*/
const cors = require('@koa/cors');
const defaults = {
origin: '*',
maxAge: 31536000,
credentials: true,
methods: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE', 'HEAD', 'OPTIONS'],
headers: ['Content-Type', 'Authorization', 'Origin', 'Accept'],
keepHeadersOnError: false,
};
module.exports = strapi => {
return {
/**
* Initialize the hook
*/
initialize() {
const {
origin,
expose,
maxAge,
credentials,
methods,
headers,
keepHeadersOnError,
} = Object.assign({}, defaults, strapi.config.get('middleware.settings.cors'));
strapi.app.use(
cors({
origin: async function(ctx) {
let originList;
if (typeof origin === 'function') {
originList = await origin(ctx);
} else {
originList = origin;
}
const whitelist = Array.isArray(originList) ? originList : originList.split(/\s*,\s*/);
const requestOrigin = ctx.accept.headers.origin;
if (whitelist.includes('*')) {
return '*';
}
if (!whitelist.includes(requestOrigin)) {
return ctx.throw(`${requestOrigin} is not a valid origin`);
}
return requestOrigin;
},
exposeHeaders: expose,
maxAge,
credentials,
allowMethods: methods,
allowHeaders: headers,
keepHeadersOnError,
})
);
},
};
};
|
:: Command execute :: | |
--[ c99shell v. 2.5 [PHP 8 Update] [24.05.2025] | Generation time: 0.0133 ]-- |