eliott/worldmonitor
1
0
Fork 0
mirror of https://github.com/koala73/worldmonitor.git synced 2026-04-30 11:27:53 +02:00
Code Issues Packages Projects Releases Wiki Activity

Use wildcard CORS for *.worldmonitor.app subdomains

Browse Source
This commit is contained in:
Elie Habib
2026-01-23 08:30:15 +04:00
parent 81c538255d
commit f56d44f2f2
2 changed files with 18 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
api/eia/[[...path]].js
View File

@@ -2,17 +2,17 @@
// Keeps API key server-side
export const config = { runtime: 'edge' };
const ALLOWED_ORIGINS = [
'https://worldmonitor.app',
'https://www.worldmonitor.app',
'https://tech.worldmonitor.app',
'http://localhost:5173',
'http://localhost:3000',
];
function getCorsOrigin(req) {
const origin = req.headers.get('origin') || '';
return ALLOWED_ORIGINS.includes(origin) ? origin : ALLOWED_ORIGINS[0];
// Allow *.worldmonitor.app and localhost
if (
origin.endsWith('.worldmonitor.app') ||
origin === 'https://worldmonitor.app' ||
origin.startsWith('http://localhost:')
) {
return origin;
}
return 'https://worldmonitor.app';
}
export default async function handler(req) {