HotFix Allow Origin header for CORS (#1566)

Signed-off-by: Gregoire Parant <g.parant@thecodingmachine.com>
2021-11-16 18:38:18 +01:00 · 2021-11-16 18:38:18 +01:00 · 75ba9ddae8
parent f6b8677c2e
commit 75ba9ddae8
2 changed files with 4 additions and 2 deletions
--- a/pusher/src/Controller/BaseController.ts
+++ b/pusher/src/Controller/BaseController.ts
@ -1,4 +1,5 @@
 import { HttpResponse } from "uWebSockets.js";
+import { FRONT_URL } from "../Enum/EnvironmentVariable";

 export class BaseController {
    protected addCorsHeaders(res: HttpResponse): void {
@ -12,6 +13,7 @@ export class BaseController {
     */
    // eslint-disable-next-line @typescript-eslint/no-explicit-any
    protected errorToResponse(e: any, res: HttpResponse): void {
+        res.writeHeader("Access-Control-Allow-Origin", FRONT_URL);
        if (e && e.message) {
            let url = e?.config?.url;
            if (url !== undefined) {
--- a/pusher/src/Controller/MapController.ts
+++ b/pusher/src/Controller/MapController.ts
@ -2,7 +2,7 @@ import { HttpRequest, HttpResponse, TemplatedApp } from "uWebSockets.js";
 import { BaseController } from "./BaseController";
 import { parse } from "query-string";
 import { adminApi } from "../Services/AdminApi";
-import { ADMIN_API_URL, DISABLE_ANONYMOUS } from "../Enum/EnvironmentVariable";
+import { ADMIN_API_URL, DISABLE_ANONYMOUS, FRONT_URL } from "../Enum/EnvironmentVariable";
 import { GameRoomPolicyTypes } from "../Model/PusherRoom";
 import { isMapDetailsData, MapDetailsData } from "../Services/AdminApi/MapDetailsData";
 import { socketManager } from "../Services/SocketManager";
@ -20,7 +20,6 @@ export class MapController extends BaseController {
    getMapUrl() {
        this.App.options("/map", (res: HttpResponse, req: HttpRequest) => {
            this.addCorsHeaders(res);
-
            res.end();
        });

@ -88,6 +87,7 @@ export class MapController extends BaseController {
                            } catch (e) {
                                // The token was not good, redirect user on login page
                                res.writeStatus("500");
+                                res.writeHeader("Access-Control-Allow-Origin", FRONT_URL);
                                res.end("Token decrypted error");
                                return;
                            }