Skip to content

Fix(cors): Update CORS setup to use property-based origins #195

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 10 commits into from
Closed

Fix(cors): Update CORS setup to use property-based origins #195

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
62aa438
global corsconfig added. corsconfig removed from IEMRAdminController
kevalkanp1011 Apr 10, 2025
b7c718e
corsconfig removed all controllers, global corsconfig modified
kevalkanp1011 Apr 14, 2025
078876c
refactor: unused import removed
kevalkanp1011 Apr 14, 2025
38a62c4
Resolved conflict from merging upstream/develop
kevalkanp1011 Apr 14, 2025
b579d56
fix: Access-Control-Allow-Origin response header is added
kevalkanp1011 May 8, 2025
b480045
Merge branch 'cors' into develop
vishwab1 May 22, 2025
5502834
fix(cors):modify the uservalidation fliter
vishwab1 May 22, 2025
76c214c
fix:user validation filter and controller space
vishwab1 May 22, 2025
b380101
fix:env values modifed
vishwab1 May 22, 2025
f30a132
fix: allowed origin *
vishwab1 May 23, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions src/main/environment/common_ci.properties
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -168,5 +168,7 @@ grievanceAllocationRetryConfiguration=3
start-grievancedatasync-scheduler=false
cron-scheduler-grievancedatasync=0 0/2 * * * ?

[email protected]_ALLOWED_ORIGINS@



1 change: 1 addition & 0 deletions src/main/environment/common_example.properties
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -192,3 +192,4 @@ grievanceAllocationRetryConfiguration=3
logging.path=logs/
logging.file.name=logs/common-api.log

cors.allowed-origins=http://localhost:*
25 changes: 25 additions & 0 deletions src/main/java/com/iemr/common/config/CorsConfig.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
package com.iemr.common.config;

import org.springframework.beans.factory.annotation.Value;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;

@Configuration
public class CorsConfig implements WebMvcConfigurer {

@Value("${cors.allowed-origins}")
private String allowedOrigins;

@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**")
.allowedOriginPatterns(allowedOrigins.split(","))
.allowedMethods("GET", "POST", "PUT", "DELETE", "OPTIONS")
.allowedHeaders("*")
.exposedHeaders("Authorization", "Jwttoken") // Explicitly expose headers if needed
.allowCredentials(true)
.maxAge(3600)
;
}
}
6 changes: 1 addition & 5 deletions src/main/java/com/iemr/common/controller/abdmfacility/AbdmFacilityController.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,18 +3,15 @@
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.bind.annotation.CrossOrigin;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PathVariable;
import org.springframework.web.bind.annotation.RequestHeader;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import com.iemr.common.service.abdmfacility.AbdmFacilityService;
import com.iemr.common.utils.response.OutputResponse;

import io.swagger.v3.oas.annotations.Operation;
import io.swagger.v3.oas.annotations.parameters.RequestBody;

@RequestMapping({ "/facility" })
@RestController
Expand All @@ -24,8 +21,7 @@ public class AbdmFacilityController {

@Autowired
private AbdmFacilityService abdmFacilityService;

@CrossOrigin

@Operation(summary = "Get Abdm facility mapped to worklocation")
@GetMapping(value = { "/getWorklocationMappedAbdmFacility/{workLocationId}" })
public String getAbdmFacilityDetails(@PathVariable int workLocationId, @RequestHeader(value = "Authorization") String Authorization) {
Expand Down
Loading
Loading