From e0eb57d38d89b8bf5282bb11fc5ac2238dc570f6 Mon Sep 17 00:00:00 2001 From: Netfan Date: Mon, 17 Feb 2025 15:17:31 +0800 Subject: [PATCH] fix: nitro server cors support with cookie (#5549) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * 修复nitro server在使用cookie时的跨域配置 --- apps/backend-mock/middleware/1.api.ts | 4 ++++ apps/backend-mock/nitro.config.ts | 3 ++- 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/apps/backend-mock/middleware/1.api.ts b/apps/backend-mock/middleware/1.api.ts index 84e2ce0e..a2e5a09b 100644 --- a/apps/backend-mock/middleware/1.api.ts +++ b/apps/backend-mock/middleware/1.api.ts @@ -1,4 +1,8 @@ export default defineEventHandler((event) => { + event.node.res.setHeader( + 'Access-Control-Allow-Origin', + event.headers.get('Origin') ?? '*', + ); if (event.method === 'OPTIONS') { event.node.res.statusCode = 204; event.node.res.statusMessage = 'No Content.'; diff --git a/apps/backend-mock/nitro.config.ts b/apps/backend-mock/nitro.config.ts index c2d7297f..c0fc13e2 100644 --- a/apps/backend-mock/nitro.config.ts +++ b/apps/backend-mock/nitro.config.ts @@ -9,7 +9,8 @@ export default defineNitroConfig({ cors: true, headers: { 'Access-Control-Allow-Credentials': 'true', - 'Access-Control-Allow-Headers': '*', + 'Access-Control-Allow-Headers': + 'Accept, Authorization, Content-Length, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With', 'Access-Control-Allow-Methods': 'GET,HEAD,PUT,PATCH,POST,DELETE', 'Access-Control-Allow-Origin': '*', 'Access-Control-Expose-Headers': '*',