restify-cors-middleware/src/actual.js

var origin = require('./origin.js');
var constants = require('./constants.js');

exports.handler = function(options) {

  return function(req, res, next) {
    var originHeader = req.headers['origin'];

    // If either no origin was set, or the origin isn't supported, continue
    // without setting any headers
    if (!originHeader || !origin.match(originHeader, options.origins)) {
      return next();
    }

    // if match was found, let's set some headers.
    res.setHeader(constants['AC_ALLOW_ORIGIN'], originHeader);
    res.setHeader(constants['STR_VARY'], constants['STR_ORIGIN']);
    if(options.credentials) {
      res.setHeader(constants['AC_ALLOW_CREDS'], 'true');
    }
    res.setHeader(constants['AC_EXPOSE_HEADERS'],
      options.exposeHeaders.join(', '));

    return next();
  };

};
Merged with https://github.com/restify/plugins/pull/10 2017-05-09 16:23:44 -04:00			`var origin = require('./origin.js');`
			`var constants = require('./constants.js');`
Steps towards removing the Restify dependency 2014-05-08 09:00:19 -04:00
			`exports.handler = function(options) {`

Merged with https://github.com/restify/plugins/pull/10 2017-05-09 16:23:44 -04:00			`return function(req, res, next) {`
			`var originHeader = req.headers['origin'];`

			`// If either no origin was set, or the origin isn't supported, continue`
			`// without setting any headers`
			`if (!originHeader \|\| !origin.match(originHeader, options.origins)) {`
			`return next();`
			`}`

			`// if match was found, let's set some headers.`
			`res.setHeader(constants['AC_ALLOW_ORIGIN'], originHeader);`
			`res.setHeader(constants['STR_VARY'], constants['STR_ORIGIN']);`
			`if(options.credentials) {`
			`res.setHeader(constants['AC_ALLOW_CREDS'], 'true');`
			`}`
			`res.setHeader(constants['AC_EXPOSE_HEADERS'],`
			`options.exposeHeaders.join(', '));`

			`return next();`
			`};`
Steps towards removing the Restify dependency 2014-05-08 09:00:19 -04:00
			`};`