forgejo-federation/modules/setting/cors.go

// Copyright 2019 The Gitea Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package setting

import (
	"time"

	"code.gitea.io/gitea/modules/log"
)

// CORSConfig defines CORS settings
var CORSConfig = struct {
	Enabled          bool
	Scheme           string
	AllowDomain      []string
	AllowSubdomain   bool
	Methods          []string
	MaxAge           time.Duration
	AllowCredentials bool
	Headers          []string
	XFrameOptions    string
}{
	Enabled:       false,
	MaxAge:        10 * time.Minute,
	Headers:       []string{"Content-Type", "User-Agent"},
	XFrameOptions: "SAMEORIGIN",
}

func loadCorsFrom(rootCfg ConfigProvider) {
	mustMapSetting(rootCfg, "cors", &CORSConfig)
	if CORSConfig.Enabled {
		log.Info("CORS Service Enabled")
	}
}
Handle CORS requests (#6289) 2019-05-13 21:08:53 +05:30			`// Copyright 2019 The Gitea Authors. All rights reserved.`
Implement FSFE REUSE for golang files (#21840) Change all license headers to comply with REUSE specification. Fix #16132 Co-authored-by: flynnnnnnnnnn <flynnnnnnnnnn@github> Co-authored-by: John Olheiser <john.olheiser@gmail.com> 2022-11-27 23:50:29 +05:30			`// SPDX-License-Identifier: MIT`
Handle CORS requests (#6289) 2019-05-13 21:08:53 +05:30
			`package setting`

			`import (`
			`"time"`

			`"code.gitea.io/gitea/modules/log"`
			`)`

format with gofumpt (#18184) * gofumpt -w -l . * gofumpt -w -l -extra . * Add linter * manual fix * change make fmt 2022-01-20 23:16:10 +05:30			`// CORSConfig defines CORS settings`
			`var CORSConfig = struct {`
			`Enabled bool`
			`Scheme string`
			`AllowDomain []string`
			`AllowSubdomain bool`
			`Methods []string`
			`MaxAge time.Duration`
			`AllowCredentials bool`
Add configuration for CORS allowed headers (#21747) This PR enhances the CORS middleware usage by allowing for the headers to be configured in `app.ini`. Fixes #21746 Co-authored-by: KN4CK3R <admin@oldschoolhack.me> Co-authored-by: John Olheiser <john.olheiser@gmail.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2022-11-11 12:09:27 +05:30			`Headers []string`
format with gofumpt (#18184) * gofumpt -w -l . * gofumpt -w -l -extra . * Add linter * manual fix * change make fmt 2022-01-20 23:16:10 +05:30			`XFrameOptions string`
			`}{`
			`Enabled: false,`
			`MaxAge: 10 * time.Minute,`
Add configuration for CORS allowed headers (#21747) This PR enhances the CORS middleware usage by allowing for the headers to be configured in `app.ini`. Fixes #21746 Co-authored-by: KN4CK3R <admin@oldschoolhack.me> Co-authored-by: John Olheiser <john.olheiser@gmail.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> 2022-11-11 12:09:27 +05:30			`Headers: []string{"Content-Type", "User-Agent"},`
format with gofumpt (#18184) * gofumpt -w -l . * gofumpt -w -l -extra . * Add linter * manual fix * change make fmt 2022-01-20 23:16:10 +05:30			`XFrameOptions: "SAMEORIGIN",`
			`}`
Handle CORS requests (#6289) 2019-05-13 21:08:53 +05:30
Refactor the setting to make unit test easier (#22405) Some bugs caused by less unit tests in fundamental packages. This PR refactor `setting` package so that create a unit test will be easier than before. - All `LoadFromXXX` files has been splited as two functions, one is `InitProviderFromXXX` and `LoadCommonSettings`. The first functions will only include the code to create or new a ini file. The second function will load common settings. - It also renames all functions in setting from `newXXXService` to `loadXXXSetting` or `loadXXXFrom` to make the function name less confusing. - Move `XORMLog` to `SQLLog` because it's a better name for that. Maybe we should finally move these `loadXXXSetting` into the `XXXInit` function? Any idea? --------- Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: delvh <dev.lh@web.de> 2023-02-19 21:42:01 +05:30			`func loadCorsFrom(rootCfg ConfigProvider) {`
			`mustMapSetting(rootCfg, "cors", &CORSConfig)`
Movde dependents on macaron from modules/setting (#10050) Co-authored-by: Lauris BH <lauris@nix.lv> 2020-01-29 13:17:46 +05:30			`if CORSConfig.Enabled {`
Handle CORS requests (#6289) 2019-05-13 21:08:53 +05:30			`log.Info("CORS Service Enabled")`
			`}`
			`}`