feat(middleware): allow Cross Origin Resource Sharing (CORS)
This commit is contained in:
Sarah Vaupel
parent
5be23c0d52
commit
e1a25cdd31
@ -21,7 +21,6 @@ dependencies:
|
||||
- template-haskell
|
||||
- shakespeare
|
||||
- monad-control
|
||||
- wai-extra
|
||||
- yaml
|
||||
- http-conduit
|
||||
- directory
|
||||
@ -31,7 +30,6 @@ dependencies:
|
||||
- conduit
|
||||
- monad-logger
|
||||
- fast-logger
|
||||
- wai-logger
|
||||
- foreign-store
|
||||
- file-embed
|
||||
- unordered-containers
|
||||
@ -40,6 +38,10 @@ dependencies:
|
||||
- time
|
||||
- case-insensitive
|
||||
- wai
|
||||
- wai-cors
|
||||
- wai-extra
|
||||
- wai-logger
|
||||
- wai-middleware-prometheus
|
||||
- cryptonite
|
||||
- cryptonite-conduit
|
||||
- saltine
|
||||
@ -144,7 +146,6 @@ dependencies:
|
||||
- cookie
|
||||
- prometheus-client
|
||||
- prometheus-metrics-ghc
|
||||
- wai-middleware-prometheus
|
||||
- extended-reals
|
||||
- rfc5051
|
||||
- unidecode
|
||||
|
||||
@ -15,6 +15,7 @@ import qualified Data.HashMap.Strict as HashMap
|
||||
import Network.HTTP.Types.Header (hSetCookie)
|
||||
import Network.Wai (Middleware)
|
||||
import qualified Network.Wai as Wai
|
||||
import Network.Wai.Middleware.Cors (CorsResourcePolicy(..), cors)
|
||||
import Network.Wai.Middleware.RequestLogger ( Destination(Logger)
|
||||
, IPAddrSource(..)
|
||||
, OutputFormat(..)
|
||||
@ -27,7 +28,7 @@ import Web.Cookie
|
||||
makeMiddleware :: MonadIO m => UniWorX -> m Middleware
|
||||
makeMiddleware app = do
|
||||
logWare <- makeLogWare app
|
||||
return $ observeHTTPRequestLatency classifyHandler . logWare . normalizeCookiesWare . defaultMiddlewaresNoLogging
|
||||
return $ observeHTTPRequestLatency classifyHandler . logWare . normalizeCookiesWare . corsWare . defaultMiddlewaresNoLogging
|
||||
|
||||
|
||||
makeLogWare :: MonadIO m => UniWorX -> m Middleware
|
||||
@ -84,3 +85,16 @@ normalizeCookiesWare waiApp req res = waiApp req $ \res' -> do
|
||||
if | null others -> (hdr :) <$> go hdrs
|
||||
| otherwise -> go hdrs
|
||||
| otherwise = (hdr :) <$> go hdrs
|
||||
|
||||
|
||||
corsWare :: Middleware
|
||||
corsWare = cors . const $ Just CorsResourcePolicy
|
||||
{ corsOrigins = Nothing
|
||||
, corsMethods = [ "GET", "HEAD", "POST" ]
|
||||
, corsRequestHeaders = []
|
||||
, corsExposedHeaders = Nothing
|
||||
, corsMaxAge = Just 600
|
||||
, corsVaryOrigin = True
|
||||
, corsRequireOrigin = False
|
||||
, corsIgnoreFailures = False
|
||||
}
|
||||
|
||||
Loading…
Reference in New Issue
Block a user