Skip to content
This repository was archived by the owner on Dec 9, 2024. It is now read-only.
This repository was archived by the owner on Dec 9, 2024. It is now read-only.

Sync subscription CORS configuration #328

Closed
Closed
Sync subscription CORS configuration#328
Labels
good first issuehelp wantedkind/featurestage/accepted
Milestone
0.6.0
@mthenw

Description

@mthenw
mthenw
opened on Oct 2, 2017

This is a Feature Proposal

Right now the event gateway allows all methods, headers, origins

event-gateway/api/events.go

Lines 21 to 26 in a65df4e

handler := &http.Server{
Addr: ":" + strconv.Itoa(int(config.Port)),
Handler: cors.AllowAll().Handler(router),
ReadTimeout: 3 * time.Second,
WriteTimeout: 3 * time.Second,
}

CORS configuration should be per HTTP subscription. HTTP subscription should allow specifying additional cors field with the following structure (and default values):

{
  "cors": {
    "origins": [], // default "*"
    "methods": [], // default ["GET", "POST"]
    "headers": [],  // default ["Content-Type", "Authorization"]
    "allowCredentials": false // default "false"
  }
}

origins is an array but actually, it should return only matched origin in the request. See #16.

Similar or dependent issues:

Metadata

Metadata

Assignees

No one assigned

    Labels

    good first issuehelp wantedkind/featurestage/accepted

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions