npm - @middy/http-cors - Versions diffs - 3.0.1 → 3.0.4 - Mend

@middy/http-cors 3.0.1 → 3.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/LICENSE CHANGED Viewed

@@ -1,6 +1,6 @@
 MIT License
-Copyright (c) 2017-2022 Luciano Mammino, will Farrell and the [Middy team](https://github.com/middyjs/middy/graphs/contributors)
+Copyright (c) 2017-2022 [Luciano Mammino](https://github.com/lmammino), [will Farrell](https://github.com/willfarrell) and the [Middy team](https://github.com/middyjs/middy/graphs/contributors)
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

package/README.md CHANGED Viewed

@@ -9,8 +9,8 @@
   <a href="https://packagephobia.com/result?p=@middy/http-cors">
     <img src="https://packagephobia.com/badge?p=@middy/http-cors" alt="npm install size" style="max-width:100%;">
   </a>
-  <a href="https://github.com/middyjs/middy/actions">
-    <img src="https://github.com/middyjs/middy/workflows/Tests/badge.svg" alt="GitHub Actions test status badge" style="max-width:100%;">
+  <a href="https://github.com/middyjs/middy/actions/workflows/tests.yml">
+    <img src="https://github.com/middyjs/middy/actions/workflows/tests.yml/badge.svg?branch=main&event=push" alt="GitHub Actions CI status badge" style="max-width:100%;">
   </a>
   <br/>
    <a href="https://standardjs.com/">
@@ -33,6 +33,7 @@
     <img src="https://img.shields.io/badge/StackOverflow-[middy]-yellow" alt="Ask questions on StackOverflow" style="max-width:100%;">
   </a>
 </p>
+<p>You can read the documentation at: <a href="https://middy.js.org/docs/middlewares/http-cors">https://middy.js.org/docs/middlewares/http-cors</a></p>
 </div>
 This middleware sets HTTP CORS headers (`Access-Control-Allow-Origin`, `Access-Control-Allow-Headers`, `Access-Control-Allow-Credentials`), necessary for making cross-origin requests, to the response object.
@@ -115,7 +116,7 @@ Everyone is very welcome to contribute to this repository. Feel free to [raise i
 ## License
-Licensed under [MIT License](LICENSE). Copyright (c) 2017-2022 Luciano Mammino, will Farrell, and the [Middy team](https://github.com/middyjs/middy/graphs/contributors).
+Licensed under [MIT License](LICENSE). Copyright (c) 2017-2022 [Luciano Mammino](https://github.com/lmammino), [will Farrell](https://github.com/willfarrell), and the [Middy team](https://github.com/middyjs/middy/graphs/contributors).
 <a href="https://app.fossa.io/projects/git%2Bgithub.com%2Fmiddyjs%2Fmiddy?ref=badge_large">
   <img src="https://app.fossa.io/api/projects/git%2Bgithub.com%2Fmiddyjs%2Fmiddy.svg?type=large" alt="FOSSA Status"  style="max-width:100%;">

package/index.cjs CHANGED Viewed

@@ -1,3 +1,106 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:true});exports.default=void 0;var _util=require("@middy/util");const getOrigin=(incomingOrigin,options={})=>{if(options.origins.length>0){if(incomingOrigin&&options.origins.includes(incomingOrigin)){return incomingOrigin}else{return options.origins[0]}}else{if(incomingOrigin&&options.credentials&&options.origin==="*"){return incomingOrigin}return options.origin}};const defaults={getOrigin,credentials:undefined,headers:undefined,methods:undefined,origin:"*",origins:[],exposeHeaders:undefined,maxAge:undefined,requestHeaders:undefined,requestMethods:undefined,cacheControl:undefined,vary:undefined};const httpCorsMiddleware=(opts={})=>{const options={...defaults,...opts};const httpCorsMiddlewareAfter=async request=>{(0,_util).normalizeHttpResponse(request);const{headers}=request.response;const existingHeaders=Object.keys(headers);if(existingHeaders.includes("Access-Control-Allow-Credentials")){options.credentials=headers["Access-Control-Allow-Credentials"]==="true"}if(options.credentials){headers["Access-Control-Allow-Credentials"]=String(options.credentials)}if(options.headers&&!existingHeaders.includes("Access-Control-Allow-Headers")){headers["Access-Control-Allow-Headers"]=options.headers}if(options.methods&&!existingHeaders.includes("Access-Control-Allow-Methods")){headers["Access-Control-Allow-Methods"]=options.methods}if(!existingHeaders.includes("Access-Control-Allow-Origin")){const eventHeaders=request.event.headers??{};const incomingOrigin=eventHeaders.Origin??eventHeaders.origin;headers["Access-Control-Allow-Origin"]=options.getOrigin(incomingOrigin,options)}let vary=options.vary;if(headers["Access-Control-Allow-Origin"]!=="*"&&!vary){vary="Origin"}if(vary&&!existingHeaders.includes("Vary")){headers.Vary=vary}if(options.exposeHeaders&&!existingHeaders.includes("Access-Control-Expose-Headers")){headers["Access-Control-Expose-Headers"]=options.exposeHeaders}if(options.maxAge&&!existingHeaders.includes("Access-Control-Max-Age")){headers["Access-Control-Max-Age"]=String(options.maxAge)}if(options.requestHeaders&&!existingHeaders.includes("Access-Control-Request-Headers")){headers["Access-Control-Request-Headers"]=options.requestHeaders}if(options.requestMethods&&!existingHeaders.includes("Access-Control-Request-Methods")){headers["Access-Control-Request-Methods"]=options.requestMethods}const httpMethod=getVersionHttpMethod[request.event.version??"1.0"]?.(request.event);if(!httpMethod){throw new Error("[http-cors] Unknown http event format")}if(httpMethod==="OPTIONS"&&options.cacheControl&&!existingHeaders.includes("Cache-Control")){headers["Cache-Control"]=options.cacheControl}request.response.headers=headers};const httpCorsMiddlewareOnError=async request=>{if(request.response===undefined)return;return httpCorsMiddlewareAfter(request)};return{after:httpCorsMiddlewareAfter,onError:httpCorsMiddlewareOnError}};const getVersionHttpMethod={"1.0":event=>event.httpMethod,"2.0":event=>event.requestContext.http.method};var _default=httpCorsMiddleware;exports.default=_default
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+    value: true
+});
+module.exports = void 0;
+var _util = require("@middy/util");
+const getOrigin = (incomingOrigin, options = {})=>{
+    if (options.origins.length > 0) {
+        if (incomingOrigin && options.origins.includes(incomingOrigin)) {
+            return incomingOrigin;
+        } else {
+            return options.origins[0];
+        }
+    } else {
+        if (incomingOrigin && options.credentials && options.origin === '*') {
+            return incomingOrigin;
+        }
+        return options.origin;
+    }
+};
+const defaults = {
+    getOrigin,
+    credentials: undefined,
+    headers: undefined,
+    methods: undefined,
+    origin: '*',
+    origins: [],
+    exposeHeaders: undefined,
+    maxAge: undefined,
+    requestHeaders: undefined,
+    requestMethods: undefined,
+    cacheControl: undefined,
+    vary: undefined
+};
+const httpCorsMiddleware = (opts = {})=>{
+    const options = {
+        ...defaults,
+        ...opts
+    };
+    const httpCorsMiddlewareAfter = async (request)=>{
+        (0, _util).normalizeHttpResponse(request);
+        const { headers  } = request.response;
+        const existingHeaders = Object.keys(headers);
+        if (existingHeaders.includes('Access-Control-Allow-Credentials')) {
+            options.credentials = headers['Access-Control-Allow-Credentials'] === 'true';
+        }
+        if (options.credentials) {
+            headers['Access-Control-Allow-Credentials'] = String(options.credentials);
+        }
+        if (options.headers && !existingHeaders.includes('Access-Control-Allow-Headers')) {
+            headers['Access-Control-Allow-Headers'] = options.headers;
+        }
+        if (options.methods && !existingHeaders.includes('Access-Control-Allow-Methods')) {
+            headers['Access-Control-Allow-Methods'] = options.methods;
+        }
+        if (!existingHeaders.includes('Access-Control-Allow-Origin')) {
+            const eventHeaders = request.event.headers ?? {};
+            const incomingOrigin = eventHeaders.Origin ?? eventHeaders.origin;
+            headers['Access-Control-Allow-Origin'] = options.getOrigin(incomingOrigin, options);
+        }
+        let vary = options.vary;
+        if (headers['Access-Control-Allow-Origin'] !== '*' && !vary) {
+            vary = 'Origin';
+        }
+        if (vary && !existingHeaders.includes('Vary')) {
+            headers.Vary = vary;
+        }
+        if (options.exposeHeaders && !existingHeaders.includes('Access-Control-Expose-Headers')) {
+            headers['Access-Control-Expose-Headers'] = options.exposeHeaders;
+        }
+        if (options.maxAge && !existingHeaders.includes('Access-Control-Max-Age')) {
+            headers['Access-Control-Max-Age'] = String(options.maxAge);
+        }
+        if (options.requestHeaders && !existingHeaders.includes('Access-Control-Request-Headers')) {
+            headers['Access-Control-Request-Headers'] = options.requestHeaders;
+        }
+        if (options.requestMethods && !existingHeaders.includes('Access-Control-Request-Methods')) {
+            headers['Access-Control-Request-Methods'] = options.requestMethods;
+        }
+        const httpMethod = getVersionHttpMethod[request.event.version ?? '1.0']?.(request.event);
+        if (!httpMethod) {
+            throw new Error('[http-cors] Unknown http event format');
+        }
+        if (httpMethod === 'OPTIONS' && options.cacheControl && !existingHeaders.includes('Cache-Control')) {
+            headers['Cache-Control'] = options.cacheControl;
+        }
+        request.response.headers = headers;
+    };
+    const httpCorsMiddlewareOnError = async (request)=>{
+        if (request.response === undefined) return;
+        return httpCorsMiddlewareAfter(request);
+    };
+    return {
+        after: httpCorsMiddlewareAfter,
+        onError: httpCorsMiddlewareOnError
+    };
+};
+const getVersionHttpMethod = {
+    '1.0': (event)=>event.httpMethod,
+    '2.0': (event)=>event.requestContext.http.method
+};
+var _default = httpCorsMiddleware;
+module.exports = _default;
 //# sourceMappingURL=index.cjs.map

package/index.js CHANGED Viewed

@@ -1,3 +1,100 @@
-import{normalizeHttpResponse}from"@middy/util";const getOrigin=(incomingOrigin,options={})=>{if(options.origins.length>0){if(incomingOrigin&&options.origins.includes(incomingOrigin)){return incomingOrigin}else{return options.origins[0]}}else{if(incomingOrigin&&options.credentials&&options.origin==="*"){return incomingOrigin}return options.origin}};const defaults={getOrigin,credentials:undefined,headers:undefined,methods:undefined,origin:"*",origins:[],exposeHeaders:undefined,maxAge:undefined,requestHeaders:undefined,requestMethods:undefined,cacheControl:undefined,vary:undefined};const httpCorsMiddleware=(opts={})=>{const options={...defaults,...opts};const httpCorsMiddlewareAfter=async request=>{normalizeHttpResponse(request);const{headers}=request.response;const existingHeaders=Object.keys(headers);if(existingHeaders.includes("Access-Control-Allow-Credentials")){options.credentials=headers["Access-Control-Allow-Credentials"]==="true"}if(options.credentials){headers["Access-Control-Allow-Credentials"]=String(options.credentials)}if(options.headers&&!existingHeaders.includes("Access-Control-Allow-Headers")){headers["Access-Control-Allow-Headers"]=options.headers}if(options.methods&&!existingHeaders.includes("Access-Control-Allow-Methods")){headers["Access-Control-Allow-Methods"]=options.methods}if(!existingHeaders.includes("Access-Control-Allow-Origin")){const eventHeaders=request.event.headers??{};const incomingOrigin=eventHeaders.Origin??eventHeaders.origin;headers["Access-Control-Allow-Origin"]=options.getOrigin(incomingOrigin,options)}let vary=options.vary;if(headers["Access-Control-Allow-Origin"]!=="*"&&!vary){vary="Origin"}if(vary&&!existingHeaders.includes("Vary")){headers.Vary=vary}if(options.exposeHeaders&&!existingHeaders.includes("Access-Control-Expose-Headers")){headers["Access-Control-Expose-Headers"]=options.exposeHeaders}if(options.maxAge&&!existingHeaders.includes("Access-Control-Max-Age")){headers["Access-Control-Max-Age"]=String(options.maxAge)}if(options.requestHeaders&&!existingHeaders.includes("Access-Control-Request-Headers")){headers["Access-Control-Request-Headers"]=options.requestHeaders}if(options.requestMethods&&!existingHeaders.includes("Access-Control-Request-Methods")){headers["Access-Control-Request-Methods"]=options.requestMethods}const httpMethod=getVersionHttpMethod[request.event.version??"1.0"]?.(request.event);if(!httpMethod){throw new Error("[http-cors] Unknown http event format")}if(httpMethod==="OPTIONS"&&options.cacheControl&&!existingHeaders.includes("Cache-Control")){headers["Cache-Control"]=options.cacheControl}request.response.headers=headers};const httpCorsMiddlewareOnError=async request=>{if(request.response===undefined)return;return httpCorsMiddlewareAfter(request)};return{after:httpCorsMiddlewareAfter,onError:httpCorsMiddlewareOnError}};const getVersionHttpMethod={"1.0":event=>event.httpMethod,"2.0":event=>event.requestContext.http.method};export default httpCorsMiddleware
+import { normalizeHttpResponse } from '@middy/util';
+const getOrigin = (incomingOrigin, options = {})=>{
+    if (options.origins.length > 0) {
+        if (incomingOrigin && options.origins.includes(incomingOrigin)) {
+            return incomingOrigin;
+        } else {
+            return options.origins[0];
+        }
+    } else {
+        if (incomingOrigin && options.credentials && options.origin === '*') {
+            return incomingOrigin;
+        }
+        return options.origin;
+    }
+};
+const defaults = {
+    getOrigin,
+    credentials: undefined,
+    headers: undefined,
+    methods: undefined,
+    origin: '*',
+    origins: [],
+    exposeHeaders: undefined,
+    maxAge: undefined,
+    requestHeaders: undefined,
+    requestMethods: undefined,
+    cacheControl: undefined,
+    vary: undefined
+};
+const httpCorsMiddleware = (opts = {})=>{
+    const options = {
+        ...defaults,
+        ...opts
+    };
+    const httpCorsMiddlewareAfter = async (request)=>{
+        normalizeHttpResponse(request);
+        const { headers  } = request.response;
+        const existingHeaders = Object.keys(headers);
+        if (existingHeaders.includes('Access-Control-Allow-Credentials')) {
+            options.credentials = headers['Access-Control-Allow-Credentials'] === 'true';
+        }
+        if (options.credentials) {
+            headers['Access-Control-Allow-Credentials'] = String(options.credentials);
+        }
+        if (options.headers && !existingHeaders.includes('Access-Control-Allow-Headers')) {
+            headers['Access-Control-Allow-Headers'] = options.headers;
+        }
+        if (options.methods && !existingHeaders.includes('Access-Control-Allow-Methods')) {
+            headers['Access-Control-Allow-Methods'] = options.methods;
+        }
+        if (!existingHeaders.includes('Access-Control-Allow-Origin')) {
+            const eventHeaders = request.event.headers ?? {};
+            const incomingOrigin = eventHeaders.Origin ?? eventHeaders.origin;
+            headers['Access-Control-Allow-Origin'] = options.getOrigin(incomingOrigin, options);
+        }
+        let vary = options.vary;
+        if (headers['Access-Control-Allow-Origin'] !== '*' && !vary) {
+            vary = 'Origin';
+        }
+        if (vary && !existingHeaders.includes('Vary')) {
+            headers.Vary = vary;
+        }
+        if (options.exposeHeaders && !existingHeaders.includes('Access-Control-Expose-Headers')) {
+            headers['Access-Control-Expose-Headers'] = options.exposeHeaders;
+        }
+        if (options.maxAge && !existingHeaders.includes('Access-Control-Max-Age')) {
+            headers['Access-Control-Max-Age'] = String(options.maxAge);
+        }
+        if (options.requestHeaders && !existingHeaders.includes('Access-Control-Request-Headers')) {
+            headers['Access-Control-Request-Headers'] = options.requestHeaders;
+        }
+        if (options.requestMethods && !existingHeaders.includes('Access-Control-Request-Methods')) {
+            headers['Access-Control-Request-Methods'] = options.requestMethods;
+        }
+        const httpMethod = getVersionHttpMethod[request.event.version ?? '1.0']?.(request.event);
+        if (!httpMethod) {
+            throw new Error('[http-cors] Unknown http event format');
+        }
+        if (httpMethod === 'OPTIONS' && options.cacheControl && !existingHeaders.includes('Cache-Control')) {
+            headers['Cache-Control'] = options.cacheControl;
+        }
+        request.response.headers = headers;
+    };
+    const httpCorsMiddlewareOnError = async (request)=>{
+        if (request.response === undefined) return;
+        return httpCorsMiddlewareAfter(request);
+    };
+    return {
+        after: httpCorsMiddlewareAfter,
+        onError: httpCorsMiddlewareOnError
+    };
+};
+const getVersionHttpMethod = {
+    '1.0': (event)=>event.httpMethod,
+    '2.0': (event)=>event.requestContext.http.method
+};
+export default httpCorsMiddleware;
 //# sourceMappingURL=index.js.map

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@middy/http-cors",
-  "version": "3.0.1",
+  "version": "3.0.4",
   "description": "CORS (Cross-Origin Resource Sharing) middleware for the middy framework",
   "type": "module",
   "engines": {
@@ -53,11 +53,11 @@
     "url": "https://github.com/middyjs/middy/issues"
   },
   "homepage": "https://middy.js.org",
-  "gitHead": "797455e2c2be445867bc03597e0a2d5b0560c9de",
+  "gitHead": "3e9bc83e791f943c71cd7003fc27f0a3692d83a1",
   "dependencies": {
-    "@middy/util": "^3.0.1"
+    "@middy/util": "3.0.4"
   },
   "devDependencies": {
-    "@middy/core": "^3.0.1"
+    "@middy/core": "3.0.4"
   }
 }