backend/internal/middleware/cors.go

package middleware

import (
	"github.com/gin-gonic/gin"
	"github.com/pocket-id/pocket-id/backend/internal/common"
)

type CorsMiddleware struct{}

func NewCorsMiddleware() *CorsMiddleware {
	return &CorsMiddleware{}
}

func (m *CorsMiddleware) Add() gin.HandlerFunc {
	return func(c *gin.Context) {
		// Allow all origins for the token endpoint
		if c.FullPath() == "/api/oidc/token" {
			c.Writer.Header().Set("Access-Control-Allow-Origin", "*")
		} else {
			c.Writer.Header().Set("Access-Control-Allow-Origin", common.EnvConfig.AppURL)
		}

		c.Writer.Header().Set("Access-Control-Allow-Headers", "*")
		c.Writer.Header().Set("Access-Control-Allow-Methods", "POST, OPTIONS, GET, PUT")

		if c.Request.Method == "OPTIONS" {
			c.AbortWithStatus(204)
			return
		}

		c.Next()
	}
}
initial commit 2024-08-12 11:00:25 +02:00			`package middleware`

			`import (`
			`"github.com/gin-gonic/gin"`
chore: replace `stonith404` with `pocket-id` after org migration 2025-02-05 18:08:01 +01:00			`"github.com/pocket-id/pocket-id/backend/internal/common"`
initial commit 2024-08-12 11:00:25 +02:00			`)`

refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`type CorsMiddleware struct{}`

			`func NewCorsMiddleware() *CorsMiddleware {`
			`return &CorsMiddleware{}`
			`}`

			`func (m *CorsMiddleware) Add() gin.HandlerFunc {`
feat: add PKCE support 2024-11-15 15:00:25 +01:00			`return func(c *gin.Context) {`
			`// Allow all origins for the token endpoint`
			`if c.FullPath() == "/api/oidc/token" {`
			`c.Writer.Header().Set("Access-Control-Allow-Origin", "*")`
			`} else {`
			`c.Writer.Header().Set("Access-Control-Allow-Origin", common.EnvConfig.AppURL)`
			`}`

			`c.Writer.Header().Set("Access-Control-Allow-Headers", "*")`
			`c.Writer.Header().Set("Access-Control-Allow-Methods", "POST, OPTIONS, GET, PUT")`

			`if c.Request.Method == "OPTIONS" {`
			`c.AbortWithStatus(204)`
			`return`
			`}`

			`c.Next()`
			`}`
initial commit 2024-08-12 11:00:25 +02:00			`}`