Skip to content

Commit

Permalink
Add some logging for CORS too
Browse files Browse the repository at this point in the history
  • Loading branch information
@parkr
parkr committed Apr 12, 2024
1 parent 767d919 commit d529a96
Showing 1 changed file with 5 additions and 6 deletions.
11 changes: 5 additions & 6 deletions cors/cors.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,10 +40,13 @@ func (c corsHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
}

func (c corsHandler) addCORSHeaders(w http.ResponseWriter, r *http.Request) {
log.Printf("cors: adding headers for %q", r.URL.Path)
w.Header().Set(CorsAccessControlAllowMethodsHeaderName, "GET, POST")
if sanitizedOrigin, ok := c.allowCORSOrigin(r.Header.Get("Origin")); ok {
log.Printf("cors: sanitized origin %q", sanitizedOrigin)
w.Header().Set(CorsAccessControlAllowOriginHeaderName, sanitizedOrigin)
} else if sanitizedOrigin, ok := c.allowCORSOrigin(r.Referer()); ok {
log.Printf("cors: sanitized referer %q", sanitizedOrigin)
w.Header().Set(CorsAccessControlAllowOriginHeaderName, sanitizedOrigin)
}
}
Expand All @@ -61,10 +64,6 @@ func (c corsHandler) allowCORSOrigin(origin string) (string, bool) {
parsedOrigin.Path = ""

originHostname := parsedOrigin.Hostname()
return parsedOrigin.String(), c.allowedHost(originHostname)
}

func (c corsHandler) allowedHost(hostname string) bool {
_, ok := c.allowedHosts[hostname]
return ok
_, ok := c.allowedHosts[originHostname]
return parsedOrigin.String(), ok
}

0 comments on commit d529a96

Please sign in to comment.