backend.im/ecommerceapplication-i7hp4n
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix CORS policy for frontend integration

Browse Source 
- Add specific Netlify frontend domain to allowed origins
- Replace wildcard origin with explicit list of allowed origins
- Add additional CORS configuration for better performance and security
- Expose headers for better API communication
This commit is contained in:
Automated Action 2025-05-26 12:24:23 +00:00
parent 215640c310
commit 07dc69217a
2 changed files with 10 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
app/core/config.py
View File

@ -11,7 +11,13 @@ class Settings(BaseSettings):
ROOT_PATH: str = "" # For deployments behind proxies/subpaths, can be set via env var ROOT_PATH: str = "" # For deployments behind proxies/subpaths, can be set via env var
# CORS Settings # CORS Settings
CORS_ORIGINS: List[str] = ["*"] # Allow all origins for development # List of allowed origins for CORS (Cross-Origin Resource Sharing)
CORS_ORIGINS: List[str] = [
"http://localhost",
"http://localhost:3000",
"http://localhost:8000",
"https://exquisite-puppy-b0f53e.netlify.app"
]
@field_validator("CORS_ORIGINS", mode="before") @field_validator("CORS_ORIGINS", mode="before")
@classmethod @classmethod

4
main.py
View File

@ -18,10 +18,12 @@ app = FastAPI(
# Set CORS middleware # Set CORS middleware
app.add_middleware( app.add_middleware(
CORSMiddleware, CORSMiddleware,
allow_origins=["*"], # Allow all origins for development allow_origins=settings.CORS_ORIGINS, # Use origins from settings
allow_credentials=True, allow_credentials=True,
allow_methods=["*"], allow_methods=["*"],
allow_headers=["*"], allow_headers=["*"],
expose_headers=["*"],
max_age=600, # Cache preflight requests for 10 minutes
) )
# Include API router # Include API router