Add Access-Control-Allow-Origin Header for admin requests

2024-11-22 13:29:21 +00:00 · 2021-05-11 19:01:25 +02:00 · 2021-05-11 19:01:25 +02:00 · cf5ed7ddde
commit cf5ed7ddde
parent d141902997
2 changed files with 7 additions and 2 deletions
--- a/config.yaml
+++ b/config.yaml
@ -71,7 +71,7 @@ rtc-relay:
  max-users-per-video-calls: 6

 # Admin URL
-admin-url: https://console.communiquons.org
+admin-url: http://localhost:3001

 # List of #Forez groups
 #
--- a/src/data/http_request_handler.rs
+++ b/src/data/http_request_handler.rs
@ -13,7 +13,7 @@ use crate::data::base_request_handler::{BaseRequestHandler, RequestValue};
 use crate::data::config::conf;
 use crate::data::error::{Res, ResultBoxError};
 use crate::data::user_token::UserAccessToken;
-use crate::helpers::{account_helper, api_helper, admin_access_token_helper};
+use crate::helpers::{account_helper, admin_access_token_helper, api_helper};
 use crate::routes::RequestResult;

 /// Http request handler
@ -137,6 +137,11 @@ impl HttpRequestHandler {
    pub fn check_admin_origin(&mut self) -> Res {
        if let Some(header) = self.request.headers().get("Origin") {
            if header.to_str()?.eq(&conf().admin_url) {
+                self.headers.insert(
+                    "Access-Control-Allow-Origin".to_string(),
+                    conf().admin_url.to_string(),
+                );
+
                return Ok(());
            }
        }