d0zingcat/cors-anywhere
1
0
Fork 0
mirror of https://github.com/d0zingcat/cors-anywhere.git synced 2026-05-13 15:09:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

0.2.2 - Expose every response header #12

Browse Source
This commit is contained in:
Rob Wu
2014-10-05 16:07:40 +02:00
parent 4343044781
commit 6b54191df9
2 changed files with 4 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
lib/cors-anywhere.js
View File

@@ -62,11 +62,7 @@ function withCORS(headers, request) {
delete request.headers['access-control-request-headers'];
}
var exposedHeaders = headers['access-control-expose-headers'] || '';
if (!/,\s*location\s*,/i.test(','+exposedHeaders+',')) exposedHeaders += ',location';
if (!/,\s*x-request-url\s*,/i.test(','+exposedHeaders+',')) exposedHeaders += ',x-request-url,x-final-url';
if (exposedHeaders.charAt(0) === ',') exposedHeaders = exposedHeaders.substr(1);
headers['access-control-expose-headers'] = exposedHeaders;
headers['access-control-expose-headers'] = Object.keys(headers).join(',');
return headers;
}
@@ -165,13 +161,13 @@ function onProxyResponse(response, req, res) {
response.headers['location'] = requestState.proxyBaseUrl + '/' + locationHeader;
}
}
withCORS(response.headers, req);
// Don't slip through cookies
// Strip cookies
delete response.headers['set-cookie'];
delete response.headers['set-cookie2'];
response.headers['x-final-url'] = requestState.location.href;
withCORS(response.headers, req);
}

2
package.json
View File

@@ -1,6 +1,6 @@
{
"name": "cors-anywhere",
"version": "0.2.1",
"version": "0.2.2",
"description": "CORS Anywhere is a reverse proxy which adds CORS headers to the proxied request. Request URL is taken from the path",
"license": "MIT",
"author": "Rob Wu <rob@robwu.nl>",