notkshitij/SkycrateBackend
1
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Changed CORS code & Alloed All origins

Browse Source
This commit is contained in:
vedang29
2025-04-15 02:49:46 +05:30
parent 293b73cf2a
commit 89e6df1c4b
1 changed files with 9 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/main/java/com/skycrate/backend/skycrateBackend/config/SecurityConfiguration.java
+9 -3
View File
@@ -63,10 +63,12 @@ public class SecurityConfiguration {
.authenticationProvider(authenticationProvider) .authenticationProvider(authenticationProvider)
.addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class) .addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class)
.csrf(csrf -> csrf.disable()) .csrf(csrf -> csrf.disable())
.cors(cors -> {}) // 🔥 This line enables CORS and connects to your CorsConfigurationSource bean
.build(); .build();
} }
// @Bean // @Bean
// CorsConfigurationSource corsConfigurationSource() { // CorsConfigurationSource corsConfigurationSource() {
// CorsConfiguration configuration = new CorsConfiguration(); // CorsConfiguration configuration = new CorsConfiguration();
@@ -85,15 +87,19 @@ public class SecurityConfiguration {
@Bean @Bean
CorsConfigurationSource corsConfigurationSource() { CorsConfigurationSource corsConfigurationSource() {
CorsConfiguration configuration = new CorsConfiguration(); CorsConfiguration configuration = new CorsConfiguration();
configuration.setAllowedOrigins(List.of("http://localhost:5173")); // Replace with your frontend origin(s)
configuration.setAllowedMethods(List.of("GET", "PUT", "DELETE", "POST", "OPTIONS")); // 🔥 Allow all origins (wildcard) safely with credentials
configuration.setAllowedOriginPatterns(List.of("*"));
configuration.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE", "OPTIONS"));
configuration.setAllowedHeaders(List.of("*")); configuration.setAllowedHeaders(List.of("*"));
configuration.setExposedHeaders(List.of("Authorization")); configuration.setExposedHeaders(List.of("Authorization"));
configuration.setAllowCredentials(true); // Important when using Authorization headers configuration.setAllowCredentials(true); // Needed for cookies / Authorization headers
UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource(); UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
source.registerCorsConfiguration("/**", configuration); source.registerCorsConfiguration("/**", configuration);
return source; return source;
} }
} }