aboutsummaryrefslogtreecommitdiff
path: root/src/utils
diff options
context:
space:
mode:
Diffstat (limited to 'src/utils')
-rw-r--r--src/utils/setCors.js23
1 files changed, 23 insertions, 0 deletions
diff --git a/src/utils/setCors.js b/src/utils/setCors.js
new file mode 100644
index 0000000..70773a5
--- /dev/null
+++ b/src/utils/setCors.js
@@ -0,0 +1,23 @@
+const setCorsHeaders = (response, config) => {
+ const corsConfig = config instanceof Object ? config : false;
+
+ response.headers.set(
+ "Access-Control-Allow-Credentials",
+ corsConfig ? corsConfig.allowCredentials : "true"
+ );
+ response.headers.set(
+ "Access-Control-Allow-Headers",
+ corsConfig ? corsConfig.allowHeaders : "application/json, Content-type"
+ );
+ response.headers.set(
+ "Access-Control-Allow-Methods",
+ corsConfig ? corsConfig.allowMethods : "GET, POST"
+ );
+ response.headers.set(
+ "Access-Control-Allow-Origin",
+ corsConfig ? corsConfig.allowOrigin : "*"
+ );
+ response.headers.set("X-Content-Type-Options", "nosniff");
+};
+
+module.exports = setCorsHeaders;
generated by cgit v1.2.3 (git 2.25.1) at 2026-04-05 12:03:11 +0000