ghaymah_dev/codepill-sfu
1
0
نسخ 0
الشفرة المشكلات طلبات السحب Actions Packages المشاريع الإصدارات الويكي النشاط

[mirotalksfu] - add cors in config

تصفح المصدر
هذا الالتزام موجود في:
Miroslav Pejic
2024-02-17 16:09:58 +01:00
الأصل 01db0bec7c
التزام e78c8e19e0
2 ملفات معدلة مع 27 إضافات و16 حذوفات
تنزيل ملف التصحيح تنزيل ملف الاختلاف توسيع جميع الملفات طي جميع الملفات

35
app/src/Server.js
عرض الملف

@@ -87,11 +87,18 @@ const options = {
key: fs.readFileSync(path.join(__dirname, config.server.ssl.key), 'utf-8'), key: fs.readFileSync(path.join(__dirname, config.server.ssl.key), 'utf-8'),
}; };
const corsOptions = {
origin: config.server?.cors?.origin || '*',
methods: config.server?.cors?.methods || ['GET', 'POST'],
};
const httpsServer = https.createServer(options, app); const httpsServer = https.createServer(options, app);
const io = require('socket.io')(httpsServer, { const io = require('socket.io')(httpsServer, {
maxHttpBufferSize: 1e7, maxHttpBufferSize: 1e7,
transports: ['websocket'], transports: ['websocket'],
cors: corsOptions,
}); });
const host = 'https://' + 'localhost' + ':' + config.server.listen.port; // config.server.listen.ip const host = 'https://' + 'localhost' + ':' + config.server.listen.port; // config.server.listen.ip
const jwtCfg = { const jwtCfg = {
@@ -218,7 +225,7 @@ if (!announcedAddress) {
function startServer() { function startServer() {
// Start the app // Start the app
app.use(cors()); app.use(cors(corsOptions));
app.use(compression()); app.use(compression());
app.use(express.json()); app.use(express.json());
app.use(express.static(dir.public)); app.use(express.static(dir.public));
@@ -493,11 +500,9 @@ function startServer() {
app.get([restApi.basePath + '/meetings'], (req, res) => { app.get([restApi.basePath + '/meetings'], (req, res) => {
// Check if endpoint allowed // Check if endpoint allowed
if (restApi.allowed && !restApi.allowed.meetings) { if (restApi.allowed && !restApi.allowed.meetings) {
return res return res.status(403).json({
.status(403) error: 'This endpoint has been disabled. Please contact the administrator for further information.',
.json({ });
error: 'This endpoint has been disabled. Please contact the administrator for further information.',
});
} }
// check if user was authorized for the api call // check if user was authorized for the api call
const { host, authorization } = req.headers; const { host, authorization } = req.headers;
@@ -540,11 +545,9 @@ function startServer() {
app.post([restApi.basePath + '/meeting'], (req, res) => { app.post([restApi.basePath + '/meeting'], (req, res) => {
// Check if endpoint allowed // Check if endpoint allowed
if (restApi.allowed && !restApi.allowed.meeting) { if (restApi.allowed && !restApi.allowed.meeting) {
return res return res.status(403).json({
.status(403) error: 'This endpoint has been disabled. Please contact the administrator for further information.',
.json({ });
error: 'This endpoint has been disabled. Please contact the administrator for further information.',
});
} }
// check if user was authorized for the api call // check if user was authorized for the api call
const { host, authorization } = req.headers; const { host, authorization } = req.headers;
@@ -571,11 +574,9 @@ function startServer() {
app.post([restApi.basePath + '/join'], (req, res) => { app.post([restApi.basePath + '/join'], (req, res) => {
// Check if endpoint allowed // Check if endpoint allowed
if (restApi.allowed && !restApi.allowed.join) { if (restApi.allowed && !restApi.allowed.join) {
return res return res.status(403).json({
.status(403) error: 'This endpoint has been disabled. Please contact the administrator for further information.',
.json({ });
error: 'This endpoint has been disabled. Please contact the administrator for further information.',
});
} }
// check if user was authorized for the api call // check if user was authorized for the api call
const { host, authorization } = req.headers; const { host, authorization } = req.headers;
@@ -648,6 +649,7 @@ function startServer() {
log.info('Listening on', { log.info('Listening on', {
app_version: packageJson.version, app_version: packageJson.version,
node_version: process.versions.node, node_version: process.versions.node,
cors_options: corsOptions,
hostConfig: hostCfg, hostConfig: hostCfg,
jwtCfg: jwtCfg, jwtCfg: jwtCfg,
presenters: config.presenters, presenters: config.presenters,
@@ -700,6 +702,7 @@ function startServer() {
log.info('Settings', { log.info('Settings', {
app_version: packageJson.version, app_version: packageJson.version,
node_version: process.versions.node, node_version: process.versions.node,
cors_options: corsOptions,
hostConfig: hostCfg, hostConfig: hostCfg,
jwtCfg: jwtCfg, jwtCfg: jwtCfg,
presenters: config.presenters, presenters: config.presenters,

8
app/src/config.template.js
عرض الملف

@@ -35,6 +35,14 @@ module.exports = {
cert: '../ssl/cert.pem', cert: '../ssl/cert.pem',
key: '../ssl/key.pem', key: '../ssl/key.pem',
}, },
/*
origin: Allow specified origin or all origins if not specified es ['https://example.com', 'https://subdomain.example.com', 'http://localhost:3000']
methods: Allow only GET and POST methods
*/
cors: {
origin: '*',
methods: ['GET', 'POST'],
},
/* /*
The recording will be saved to the directory designated within your Server app/<dir> The recording will be saved to the directory designated within your Server app/<dir>
Note: if you use Docker: Create the "app/rec" directory, configure it as a volume in docker-compose.yml, Note: if you use Docker: Create the "app/rec" directory, configure it as a volume in docker-compose.yml,