Skip to content

Commit

Permalink
cors enable by default
Browse files Browse the repository at this point in the history
  • Loading branch information
@codeskyblue
codeskyblue committed Dec 19, 2023
1 parent 08e2cf7 commit eacf2d1
Show file tree
Hide file tree
Showing 2 changed files with 16 additions and 6 deletions.
2 changes: 1 addition & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,7 @@ Tested with go-1.16
1. [x] Apple ipa auto generate .plist file, qrcode can be recognized by iphone (Require https)
1. [x] Plist proxy
1. [ ] Download count statistics
1. [x] CORS enabled (AllowMethods: GET, HEAD, OPTIONS)
1. [x] CORS enabled
1. [ ] Offline download
1. [ ] Code file preview
1. [ ] Edit file support
Expand Down
20 changes: 15 additions & 5 deletions main.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,6 @@ type Configure struct {
HTTPAuth string `yaml:"httpauth"`
Cert string `yaml:"cert"`
Key string `yaml:"key"`
Cors bool `yaml:"cors"`
Theme string `yaml:"theme"`
XHeaders bool `yaml:"xheaders"`
Upload bool `yaml:"upload"`
Expand Down Expand Up @@ -118,7 +117,6 @@ func parseFlags() error {
kingpin.Flag("upload", "enable upload support").BoolVar(&gcfg.Upload)
kingpin.Flag("delete", "enable delete support").BoolVar(&gcfg.Delete)
kingpin.Flag("xheaders", "used when behide nginx").BoolVar(&gcfg.XHeaders)
kingpin.Flag("cors", "enable cross-site HTTP request").BoolVar(&gcfg.Cors)
kingpin.Flag("debug", "enable debug mode").BoolVar(&gcfg.Debug)
kingpin.Flag("plistproxy", "plist proxy when server is not https").Short('p').StringVar(&gcfg.PlistProxy)
kingpin.Flag("title", "server title").StringVar(&gcfg.Title)
Expand Down Expand Up @@ -151,6 +149,19 @@ func fixPrefix(prefix string) string {
return prefix
}

func cors(next http.Handler) http.Handler {
// access control and CORS middleware
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
w.Header().Set("Access-Control-Allow-Origin", "*")
w.Header().Set("Access-Control-Allow-Methods", "*")
w.Header().Set("Access-Control-Allow-Headers", "*")
if r.Method == "OPTIONS" {
return
}
next.ServeHTTP(w, r)
})
}

func main() {
if err := parseFlags(); err != nil {
log.Fatal(err)
Expand Down Expand Up @@ -210,9 +221,8 @@ func main() {
}

// CORS
if gcfg.Cors {
hdlr = handlers.CORS(handlers.AllowedMethods([]string{"GET", "HEAD", "OPTIONS"}))(hdlr)
}
hdlr = cors(hdlr)

if gcfg.XHeaders {
hdlr = handlers.ProxyHeaders(hdlr)
}
Expand Down

0 comments on commit eacf2d1

Please sign in to comment.