added flags for CORS header

This commit is contained in:
Sean Macdonald 2021-09-04 19:13:55 -04:00
parent 1b11885823
commit 6c953e0326
4 changed files with 27 additions and 2 deletions

View File

@ -49,6 +49,7 @@ var Flags struct {
ShowVersion bool
ExposeMetrics bool
MetricsPath string
CorsOrigin string
BehindProxy bool
VerboseOutput bool
S3TransferAcceleration bool
@ -94,6 +95,7 @@ func ParseFlags() {
flag.BoolVar(&Flags.ShowVersion, "version", false, "Print tusd version information")
flag.BoolVar(&Flags.ExposeMetrics, "expose-metrics", true, "Expose metrics about tusd usage")
flag.StringVar(&Flags.MetricsPath, "metrics-path", "/metrics", "Path under which the metrics endpoint will be accessible")
flag.StringVar(&Flags.CorsOrigin, "cors-origin", "", "Explicitly set Access-Control-Allow-Origin header")
flag.BoolVar(&Flags.BehindProxy, "behind-proxy", false, "Respect X-Forwarded-* and similar headers which may be set by proxies")
flag.BoolVar(&Flags.VerboseOutput, "verbose", true, "Enable verbose logging output")
flag.BoolVar(&Flags.S3TransferAcceleration, "s3-transfer-acceleration", false, "Use AWS S3 transfer acceleration endpoint (requires -s3-bucket option and Transfer Acceleration property on S3 bucket to be set)")

View File

@ -26,6 +26,7 @@ func Serve() {
config := handler.Config{
MaxSize: Flags.MaxSize,
BasePath: Flags.Basepath,
CorsOrigin: Flags.CorsOrigin,
RespectForwardedHeaders: Flags.BehindProxy,
StoreComposer: Composer,
NotifyCompleteUploads: true,
@ -100,6 +101,10 @@ func Serve() {
protocol = "https"
}
if Flags.CorsOrigin != "" {
stdout.Printf("CORS origin header is %s", Flags.CorsOrigin)
}
if Flags.HttpSock == "" {
stdout.Printf("You can now upload files to: %s://%s%s", protocol, address, basepath)
}

View File

@ -36,6 +36,10 @@ type Config struct {
NotifyCreatedUploads bool
// Logger is the logger to use internally, mostly for printing requests.
Logger *log.Logger
// Explicitly set Access-Control-Allow-Origin in cases where RespectForwardedHeaders
// doesn't give you the desired result. This can be the case with some reverse proxies
// or a kubernetes setup with complex network routing rules
CorsOrigin string
// Respect the X-Forwarded-Host, X-Forwarded-Proto and Forwarded headers
// potentially set by proxies when generating an absolute URL in the
// response to POST requests.
@ -82,5 +86,12 @@ func (config *Config) validate() error {
return errors.New("tusd: StoreComposer in Config needs to contain a non-nil core")
}
if config.CorsOrigin != "" && config.CorsOrigin != "*" && config.CorsOrigin != "null" {
_, err := url.ParseRequestURI(config.CorsOrigin)
if err != nil {
errors.New("tusd: CorsOrigin is not a valid URL")
}
}
return nil
}

View File

@ -217,8 +217,15 @@ func (handler *UnroutedHandler) Middleware(h http.Handler) http.Handler {
header := w.Header()
if origin := r.Header.Get("Origin"); origin != "" {
var origin = handler.config.CorsOrigin
if origin == "" {
origin = r.Header.Get("Origin")
}
if origin != "" {
header.Set("Access-Control-Allow-Origin", origin)
header.Set("Vary", "Origin")
if r.Method == "OPTIONS" {
// Preflight request