Documentation for CORS option #82

electerious · Feb 25, 2020 · 6550286 · 6550286
1 parent 2dc3af2
commit 6550286
Show file tree

Hide file tree

Showing 2 changed files with 33 additions and 3 deletions.
diff --git a/docs/CORS headers.md b/docs/CORS headers.md
@@ -51,10 +51,20 @@ Access-Control-Allow-Headers: Content-Type
 
 If you are running Ackee on a platform which handles SSL for you, you may want a quick solution for setting CORS headers instead of using a [reverse proxy](SSL%20and%20HTTPS.md).
 
-As an environment variable, you will need to just set:
+As an environment variable, you will need to set:
 
-```bash
+```
 ACKEE_ALLOW_ORIGIN="https://example.com"
 ```
 
-The proper header value for `Access-Control-Allow-Origin` will be set with the other headers being the recommended values.
+The proper header value for `Access-Control-Allow-Origin` will be set with the other headers being the recommended values.
+
+It's also possible to allow requests from all domains (not recommended) or from multiple domains:
+
+```
+ACKEE_ALLOW_ORIGIN="*"
+```
+
+```
+ACKEE_ALLOW_ORIGIN="https://example.com,https://example2.com"
+```
diff --git a/docs/Options.md b/docs/Options.md
@@ -70,4 +70,24 @@ Set the environment to `development` to see additional details in the console an
 
 ```
 NODE_ENV=development
+```
+
+## CORS headers
+
+Quick solution for setting [CORS headers](CORS%20headers.md) instead of using a [reverse proxy](SSL%20and%20HTTPS.md). This is helpful if you are running Ackee on a platform which handles SSL for you.
+
+```
+ACKEE_ALLOW_ORIGIN="*"
+```
+
+*or*
+
+```
+ACKEE_ALLOW_ORIGIN="https://example.com"
+```
+
+*or*
+
+```
+ACKEE_ALLOW_ORIGIN="https://example.com,https://example2.com"
 ```