qiubinghui
/
zhywpt-h5
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 提交
1 分支
目錄樹: b4d0e91076
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 'b4d0e91076'
${ noResults }
zhywpt-h5/node_modules/egg-cors/README.md

README.md 2.5KB
原始文件 Normal View 歷史記錄

'2023年6月9日12:37:58'
2 年之前
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. # egg-cors

  2. 

  3. [![NPM version][npm-image]][npm-url]

  4. [![build status][travis-image]][travis-url]

  5. [![Test coverage][codecov-image]][codecov-url]

  6. [![David deps][david-image]][david-url]

  7. [![Known Vulnerabilities][snyk-image]][snyk-url]

  8. [![npm download][download-image]][download-url]

  9. 

  10. [npm-image]: https://img.shields.io/npm/v/egg-cors.svg?style=flat-square

  11. [npm-url]: https://npmjs.org/package/egg-cors

  12. [travis-image]: https://img.shields.io/travis/eggjs/egg-cors.svg?style=flat-square

  13. [travis-url]: https://travis-ci.org/eggjs/egg-cors

  14. [codecov-image]: https://codecov.io/github/eggjs/egg-cors/coverage.svg?branch=master

  15. [codecov-url]: https://codecov.io/github/eggjs/egg-cors?branch=master

  16. [david-image]: https://img.shields.io/david/eggjs/egg-cors.svg?style=flat-square

  17. [david-url]: https://david-dm.org/eggjs/egg-cors

  18. [snyk-image]: https://snyk.io/test/npm/egg-cors/badge.svg?style=flat-square

  19. [snyk-url]: https://snyk.io/test/npm/egg-cors

  20. [download-image]: https://img.shields.io/npm/dm/egg-cors.svg?style=flat-square

  21. [download-url]: https://npmjs.org/package/egg-cors

  22. 

  23. [CORS](https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS) plugin for egg, based on [@koa/cors](https://github.com/koajs/cors).

  24. 

  25. ## Install

  26. 

  27. ```bash

  28. $ npm i egg-cors --save

  29. ```

  30. 

  31. ## Usage

  32. 

  33. ```js

  34. // {app_root}/config/plugin.js

  35. exports.cors = {

  36.   enable: true,

  37.   package: 'egg-cors',

  38. };

  39. ```

  40. 

  41. `egg-cors` works internally with [egg-security](https://github.com/eggjs/egg-security). By defining the property of `domainWhiteList` on object `security`, you have successfully informed the framework to whitelist the passed domains.

  42. 

  43. When you make a request from client side, **egg** should return an `Access-Control-Allow-Origin` response header with the domain that you passed in along with the payload and status code *200*.

  44. 

  45. ```js

  46. exports.security = {

  47.   domainWhiteList: [ 'http://localhost:4200' ],

  48. };

  49. ```

  50. 

  51. ## Configuration

  52. 

  53. Support all configurations in [@koa/cors](https://github.com/koajs/cors).

  54. 

  55. ```js

  56. // {app_root}/config/config.default.js

  57. exports.cors = {

  58.   // {string|Function} origin: '*',

  59.   // {string|Array} allowMethods: 'GET,HEAD,PUT,POST,DELETE,PATCH'

  60. };

  61. ```

  62. 

  63. If the `origin` is set, the plugin will follow it to set the `Access-Control-Allow-Origin` and ignore the `security.domainWhiteList`. Otherwise, the `security.domainWhiteList` which is default will take effect as described above.

  64. 

  65. ## Security

  66. 

  67. Only in safe domain list support CORS when security plugin enabled.

  68. 

  69. ## Questions & Suggestions

  70. 

  71. Please open an issue [here](https://github.com/eggjs/egg/issues).

  72. 

  73. ## License

  74. 

  75. [MIT](LICENSE)