feat: support multiple cross-origin

reearth · Oct 16, 2024 · 5ae85a2 · 5ae85a2
1 parent a803d77
commit 5ae85a2
Show file tree

Hide file tree

Showing 2 changed files with 20 additions and 0 deletions.
diff --git a/web/Dockerfile b/web/Dockerfile
@@ -31,6 +31,9 @@ ENV PORT=8080
 # Ref: https://cloud.google.com/load-balancing/docs/https#target-proxies
 ENV REAL_IP_HEADER=X-Forwarded-For
 
+# URLs with access to reearth-markplace
+ENV CORS_ALLOWED_ORIGINS=""
+
 COPY --from=node /work/dist/ /usr/share/nginx/html
 COPY --chown=nginx:nginx  docker/reearth_config.json.template /tmp/reearth_config.json.template
 COPY --chown=nginx:nginx docker/nginx.conf.template /etc/nginx/templates/nginx.conf.template

diff --git a/web/docker/nginx.conf.template b/web/docker/nginx.conf.template
@@ -16,6 +16,14 @@ log_format json escape=json '{'
 
 real_ip_header ${REAL_IP_HEADER};
 
+# CORS_ALLOWED_ORIGINS specifies multiple origins to which access is allowed. 
+# The delimiter is | and the regular expression or is used to match. 
+# exmaple: CORS_ALLOWED_ORIGINS=https://examplecom|http://localhosts:3000
+map $http_origin $cors{
+  default '';
+  ~^(${CORS_ALLOWED_ORIGINS})$ $http_origin;
+}
+
 server { 
   listen ${PORT};
   root /usr/share/nginx/html;
@@ -25,6 +33,15 @@ server {
   error_log /dev/stderr warn;
 
   location / {
+    add_header 'Access-Control-Allow-Origin' "$cors";
+    add_header 'Access-Control-Allow-Credentials' 'true';
+    add_header 'Access-Control-Allow-Methods' 'GET, POST, PATCH, PUT, HEAD OPTION';
+    add_header 'Access-Control-Allow-Headers' 'Origin, Authorization, Accept';
+
+    if ($request_method = 'OPTIONS') {
+      return 204;
+    }
+
     try_files $uri /index.html =404;
   }