Added CORS to API Gateway

quanticedu · May 17, 2022 · 2349bba · 2349bba
1 parent f71bacf
commit 2349bba
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 4 deletions.
diff --git a/api-gateway/apis.json b/api-gateway/apis.json
@@ -2,6 +2,7 @@
     {
         "api_name": "immortal_memes",
         "api_type": "HTTP",
+        "Access-Control-Allow-Origin": ["*"],
         "integrations": {
             "0": {"type": "lambda", "region": "us-east-1", "function": "im-health-check"}
         },

diff --git a/api-gateway/application.py b/api-gateway/application.py
@@ -12,6 +12,7 @@
 #    Integrations: Lambda
 #    Methods: any (including the ANY method specifier)
 #    Path variables: yes, except for greedy variables.
+#    CORS: Access-Control-Allow-Origin only
 #
 # For more information on Flask, see 
 # https://flask.palletsprojects.com/en/2.1.x/. A few notes:
@@ -28,12 +29,10 @@
 # https://boto3.amazonaws.com/v1/documentation/api/latest/index.html
 
 from flask import Flask, request
+from flask_cors import CORS
 import json, boto3
 from botocore.config import Config
 
-# Elastic Beanstalk looks for a callable named application
-application = Flask(__name__)
-
 class LambdaInvoker():
     """Represents a callable invoker for an AWS Lambda function.
 
@@ -135,7 +134,11 @@ def get_required_entry(dictionary, key, exception_text):
 
     return result
 
-# load the API(s) from a config file
+# Start building the app. Elastic Beanstalk looks for a callable named 
+# application.
+application = Flask(__name__)
+
+# load the config file
 config = None
 
 try:
@@ -151,6 +154,8 @@ def get_required_entry(dictionary, key, exception_text):
     apis = []
 
 # build the route handlers
+cors_origins = []
+
 try:
     for api in apis:
         api_name = get_required_entry(
@@ -231,6 +236,8 @@ def get_required_entry(dictionary, key, exception_text):
         else:
             raise Exception(f"api type {api_type} not implemented")
 
+        cors_origins += api.get("Access-Control-Allow-Origin", [])
+
 except Exception as err:
     # reset the application and add an error route
     application = Flask(__name__)
@@ -243,4 +250,7 @@ def get_required_entry(dictionary, key, exception_text):
 
 # run the app.
 if __name__ == "__main__":
+    if cors_origins:
+        CORS(application, origins=cors_origins)
+
     application.run()
diff --git a/api-gateway/requirements.txt b/api-gateway/requirements.txt
@@ -3,6 +3,7 @@ botocore==1.24.43
 click==8.1.2
 colorama==0.4.4
 Flask==2.1.1
+Flask-Cors==3.0.10
 importlib-metadata==4.11.3
 itsdangerous==2.1.2
 Jinja2==3.1.1