fixed cors restriction

ArkiLovesProgramming · ArkiLovesProgramming · commit b0537770471c · 2024-05-15T20:13:12.000-02:30
diff --git a/tasksync_backend/app.js b/tasksync_backend/app.js
@@ -1,6 +1,6 @@
 const express = require('express')
 const UserRouter = require('./router/UserRouter')
-const cors = require('cors');
+// const cors = require('cors');
 const ProjectRouter = require('./router/ProjectRouter')
 const TaskgroupRouter = require('./router/TaskgroupRouter')
 const TaskRouter = require('./router/TaskRouter')
@@ -21,13 +21,24 @@ app.use(jsonParser)
 // cookie
 app.use(cookieParser())
 
+app.all('*', function (req, res, next) {
+	console.log(req.headers.origin)
+	if (config.cors.origin.indexOf(req.headers.origin) !== -1){
+		res.header("Access-Control-Allow-Origin", req.headers.origin)//访问的主机名称
+	}
+  	res.header('Access-Control-Allow-Credentials','true'); //是否支持cookie跨域
+  	res.header("Access-Control-Allow-Headers","Origin, X-Requested-With, Content-Type, Accept");
+  	res.header("Access-Control-Allow-Methods", "PUT,POST,GET,DELETE,OPTIONS");//允许以下方法进行跨域请求
+  next();
+});
+
 // 全局配置跨域
-app.use(cors({
-	origin: config.cors.origin,
-	credentials: true,
-	allowedHeaders: ['Content-Type'],
-	methods: ['GET', 'POST', 'PUT', 'DELETE']
-  }));
+// app.use(cors({
+// 	origin: config.cors.origin,
+// 	credentials: true,
+// 	allowedHeaders: ['Content-Type'],
+// 	methods: ['GET', 'POST', 'PUT', 'DELETE']
+//   }));
 
 app.use('/api/user', UserRouter)
 app.use('/api/project', ProjectRouter)
diff --git a/tasksync_backend/config/Config.js b/tasksync_backend/config/Config.js
@@ -10,6 +10,6 @@ module.exports = {
         validTime: 3000
     },
     cors: {
-        origin: ["http://tasksync.arkilovesprogramming.com:80", "https://tasksync.arkilovesprogramming.com:443"]
+        origin: ["http://tasksync.arkilovesprogramming.com:80", "https://tasksync.arkilovesprogramming.com:443", "http://localhost:3000"],
     }
 }
diff --git a/tasksync_frontend/src/common/api.js b/tasksync_frontend/src/common/api.js
@@ -1,19 +1,8 @@
 import axios from "axios"
 
 // const base_url = "https://letschat.api.arkilovesprogramming.com:443/api"
-// const base_url = "http://localhost:9000/api"
-const base_url = "https://weiblog.arkilovesprogramming.com:444/api"
-
-// Request interceptors for API calls
-// axios.interceptors.request.use(
-//     config => {
-//         config.headers['withCredentials'] = true;
-//         return config;
-//     },
-//     error => {
-//         return Promise.reject(error);
-//     }
-// );
+const base_url = "http://localhost:9000/api"
+// const base_url = "https://weiblog.arkilovesprogramming.com:444/api"
 
 // 修改 Axios 的默认配置
 axios.defaults.withCredentials = true;

Original file line number	Diff line number	Diff line change
`@@ -10,6 +10,6 @@ module.exports = {`
`10`	`10`	`validTime: 3000`
`11`	`11`	`},`
`12`	`12`	`cors: {`
`13`		`- origin: ["http://tasksync.arkilovesprogramming.com:80", "https://tasksync.arkilovesprogramming.com:443"]`
	`13`	`+ origin: ["http://tasksync.arkilovesprogramming.com:80", "https://tasksync.arkilovesprogramming.com:443", "http://localhost:3000"],`
`14`	`14`	`}`
`15`	`15`	`}`