npm - @middy/http-cors - Versions diffs - 3.0.3 → 3.0.4 - Mend

@middy/http-cors 3.0.3 → 3.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/index.cjs CHANGED Viewed

@@ -1,3 +1,106 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:true});module.exports=void 0;var _util=require("@middy/util");const getOrigin=(incomingOrigin,options={})=>{if(options.origins.length>0){if(incomingOrigin&&options.origins.includes(incomingOrigin)){return incomingOrigin}else{return options.origins[0]}}else{if(incomingOrigin&&options.credentials&&options.origin==="*"){return incomingOrigin}return options.origin}};const defaults={getOrigin,credentials:undefined,headers:undefined,methods:undefined,origin:"*",origins:[],exposeHeaders:undefined,maxAge:undefined,requestHeaders:undefined,requestMethods:undefined,cacheControl:undefined,vary:undefined};const httpCorsMiddleware=(opts={})=>{const options={...defaults,...opts};const httpCorsMiddlewareAfter=async request=>{(0,_util).normalizeHttpResponse(request);const{headers}=request.response;const existingHeaders=Object.keys(headers);if(existingHeaders.includes("Access-Control-Allow-Credentials")){options.credentials=headers["Access-Control-Allow-Credentials"]==="true"}if(options.credentials){headers["Access-Control-Allow-Credentials"]=String(options.credentials)}if(options.headers&&!existingHeaders.includes("Access-Control-Allow-Headers")){headers["Access-Control-Allow-Headers"]=options.headers}if(options.methods&&!existingHeaders.includes("Access-Control-Allow-Methods")){headers["Access-Control-Allow-Methods"]=options.methods}if(!existingHeaders.includes("Access-Control-Allow-Origin")){const eventHeaders=request.event.headers??{};const incomingOrigin=eventHeaders.Origin??eventHeaders.origin;headers["Access-Control-Allow-Origin"]=options.getOrigin(incomingOrigin,options)}let vary=options.vary;if(headers["Access-Control-Allow-Origin"]!=="*"&&!vary){vary="Origin"}if(vary&&!existingHeaders.includes("Vary")){headers.Vary=vary}if(options.exposeHeaders&&!existingHeaders.includes("Access-Control-Expose-Headers")){headers["Access-Control-Expose-Headers"]=options.exposeHeaders}if(options.maxAge&&!existingHeaders.includes("Access-Control-Max-Age")){headers["Access-Control-Max-Age"]=String(options.maxAge)}if(options.requestHeaders&&!existingHeaders.includes("Access-Control-Request-Headers")){headers["Access-Control-Request-Headers"]=options.requestHeaders}if(options.requestMethods&&!existingHeaders.includes("Access-Control-Request-Methods")){headers["Access-Control-Request-Methods"]=options.requestMethods}const httpMethod=getVersionHttpMethod[request.event.version??"1.0"]?.(request.event);if(!httpMethod){throw new Error("[http-cors] Unknown http event format")}if(httpMethod==="OPTIONS"&&options.cacheControl&&!existingHeaders.includes("Cache-Control")){headers["Cache-Control"]=options.cacheControl}request.response.headers=headers};const httpCorsMiddlewareOnError=async request=>{if(request.response===undefined)return;return httpCorsMiddlewareAfter(request)};return{after:httpCorsMiddlewareAfter,onError:httpCorsMiddlewareOnError}};const getVersionHttpMethod={"1.0":event=>event.httpMethod,"2.0":event=>event.requestContext.http.method};var _default=httpCorsMiddleware;module.exports=_default
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+    value: true
+});
+module.exports = void 0;
+var _util = require("@middy/util");
+const getOrigin = (incomingOrigin, options = {})=>{
+    if (options.origins.length > 0) {
+        if (incomingOrigin && options.origins.includes(incomingOrigin)) {
+            return incomingOrigin;
+        } else {
+            return options.origins[0];
+        }
+    } else {
+        if (incomingOrigin && options.credentials && options.origin === '*') {
+            return incomingOrigin;
+        }
+        return options.origin;
+    }
+};
+const defaults = {
+    getOrigin,
+    credentials: undefined,
+    headers: undefined,
+    methods: undefined,
+    origin: '*',
+    origins: [],
+    exposeHeaders: undefined,
+    maxAge: undefined,
+    requestHeaders: undefined,
+    requestMethods: undefined,
+    cacheControl: undefined,
+    vary: undefined
+};
+const httpCorsMiddleware = (opts = {})=>{
+    const options = {
+        ...defaults,
+        ...opts
+    };
+    const httpCorsMiddlewareAfter = async (request)=>{
+        (0, _util).normalizeHttpResponse(request);
+        const { headers  } = request.response;
+        const existingHeaders = Object.keys(headers);
+        if (existingHeaders.includes('Access-Control-Allow-Credentials')) {
+            options.credentials = headers['Access-Control-Allow-Credentials'] === 'true';
+        }
+        if (options.credentials) {
+            headers['Access-Control-Allow-Credentials'] = String(options.credentials);
+        }
+        if (options.headers && !existingHeaders.includes('Access-Control-Allow-Headers')) {
+            headers['Access-Control-Allow-Headers'] = options.headers;
+        }
+        if (options.methods && !existingHeaders.includes('Access-Control-Allow-Methods')) {
+            headers['Access-Control-Allow-Methods'] = options.methods;
+        }
+        if (!existingHeaders.includes('Access-Control-Allow-Origin')) {
+            const eventHeaders = request.event.headers ?? {};
+            const incomingOrigin = eventHeaders.Origin ?? eventHeaders.origin;
+            headers['Access-Control-Allow-Origin'] = options.getOrigin(incomingOrigin, options);
+        }
+        let vary = options.vary;
+        if (headers['Access-Control-Allow-Origin'] !== '*' && !vary) {
+            vary = 'Origin';
+        }
+        if (vary && !existingHeaders.includes('Vary')) {
+            headers.Vary = vary;
+        }
+        if (options.exposeHeaders && !existingHeaders.includes('Access-Control-Expose-Headers')) {
+            headers['Access-Control-Expose-Headers'] = options.exposeHeaders;
+        }
+        if (options.maxAge && !existingHeaders.includes('Access-Control-Max-Age')) {
+            headers['Access-Control-Max-Age'] = String(options.maxAge);
+        }
+        if (options.requestHeaders && !existingHeaders.includes('Access-Control-Request-Headers')) {
+            headers['Access-Control-Request-Headers'] = options.requestHeaders;
+        }
+        if (options.requestMethods && !existingHeaders.includes('Access-Control-Request-Methods')) {
+            headers['Access-Control-Request-Methods'] = options.requestMethods;
+        }
+        const httpMethod = getVersionHttpMethod[request.event.version ?? '1.0']?.(request.event);
+        if (!httpMethod) {
+            throw new Error('[http-cors] Unknown http event format');
+        }
+        if (httpMethod === 'OPTIONS' && options.cacheControl && !existingHeaders.includes('Cache-Control')) {
+            headers['Cache-Control'] = options.cacheControl;
+        }
+        request.response.headers = headers;
+    };
+    const httpCorsMiddlewareOnError = async (request)=>{
+        if (request.response === undefined) return;
+        return httpCorsMiddlewareAfter(request);
+    };
+    return {
+        after: httpCorsMiddlewareAfter,
+        onError: httpCorsMiddlewareOnError
+    };
+};
+const getVersionHttpMethod = {
+    '1.0': (event)=>event.httpMethod,
+    '2.0': (event)=>event.requestContext.http.method
+};
+var _default = httpCorsMiddleware;
+module.exports = _default;
 //# sourceMappingURL=index.cjs.map

package/index.js CHANGED Viewed

@@ -1,3 +1,100 @@
-import{normalizeHttpResponse}from"@middy/util";const getOrigin=(incomingOrigin,options={})=>{if(options.origins.length>0){if(incomingOrigin&&options.origins.includes(incomingOrigin)){return incomingOrigin}else{return options.origins[0]}}else{if(incomingOrigin&&options.credentials&&options.origin==="*"){return incomingOrigin}return options.origin}};const defaults={getOrigin,credentials:undefined,headers:undefined,methods:undefined,origin:"*",origins:[],exposeHeaders:undefined,maxAge:undefined,requestHeaders:undefined,requestMethods:undefined,cacheControl:undefined,vary:undefined};const httpCorsMiddleware=(opts={})=>{const options={...defaults,...opts};const httpCorsMiddlewareAfter=async request=>{normalizeHttpResponse(request);const{headers}=request.response;const existingHeaders=Object.keys(headers);if(existingHeaders.includes("Access-Control-Allow-Credentials")){options.credentials=headers["Access-Control-Allow-Credentials"]==="true"}if(options.credentials){headers["Access-Control-Allow-Credentials"]=String(options.credentials)}if(options.headers&&!existingHeaders.includes("Access-Control-Allow-Headers")){headers["Access-Control-Allow-Headers"]=options.headers}if(options.methods&&!existingHeaders.includes("Access-Control-Allow-Methods")){headers["Access-Control-Allow-Methods"]=options.methods}if(!existingHeaders.includes("Access-Control-Allow-Origin")){const eventHeaders=request.event.headers??{};const incomingOrigin=eventHeaders.Origin??eventHeaders.origin;headers["Access-Control-Allow-Origin"]=options.getOrigin(incomingOrigin,options)}let vary=options.vary;if(headers["Access-Control-Allow-Origin"]!=="*"&&!vary){vary="Origin"}if(vary&&!existingHeaders.includes("Vary")){headers.Vary=vary}if(options.exposeHeaders&&!existingHeaders.includes("Access-Control-Expose-Headers")){headers["Access-Control-Expose-Headers"]=options.exposeHeaders}if(options.maxAge&&!existingHeaders.includes("Access-Control-Max-Age")){headers["Access-Control-Max-Age"]=String(options.maxAge)}if(options.requestHeaders&&!existingHeaders.includes("Access-Control-Request-Headers")){headers["Access-Control-Request-Headers"]=options.requestHeaders}if(options.requestMethods&&!existingHeaders.includes("Access-Control-Request-Methods")){headers["Access-Control-Request-Methods"]=options.requestMethods}const httpMethod=getVersionHttpMethod[request.event.version??"1.0"]?.(request.event);if(!httpMethod){throw new Error("[http-cors] Unknown http event format")}if(httpMethod==="OPTIONS"&&options.cacheControl&&!existingHeaders.includes("Cache-Control")){headers["Cache-Control"]=options.cacheControl}request.response.headers=headers};const httpCorsMiddlewareOnError=async request=>{if(request.response===undefined)return;return httpCorsMiddlewareAfter(request)};return{after:httpCorsMiddlewareAfter,onError:httpCorsMiddlewareOnError}};const getVersionHttpMethod={"1.0":event=>event.httpMethod,"2.0":event=>event.requestContext.http.method};export default httpCorsMiddleware
+import { normalizeHttpResponse } from '@middy/util';
+const getOrigin = (incomingOrigin, options = {})=>{
+    if (options.origins.length > 0) {
+        if (incomingOrigin && options.origins.includes(incomingOrigin)) {
+            return incomingOrigin;
+        } else {
+            return options.origins[0];
+        }
+    } else {
+        if (incomingOrigin && options.credentials && options.origin === '*') {
+            return incomingOrigin;
+        }
+        return options.origin;
+    }
+};
+const defaults = {
+    getOrigin,
+    credentials: undefined,
+    headers: undefined,
+    methods: undefined,
+    origin: '*',
+    origins: [],
+    exposeHeaders: undefined,
+    maxAge: undefined,
+    requestHeaders: undefined,
+    requestMethods: undefined,
+    cacheControl: undefined,
+    vary: undefined
+};
+const httpCorsMiddleware = (opts = {})=>{
+    const options = {
+        ...defaults,
+        ...opts
+    };
+    const httpCorsMiddlewareAfter = async (request)=>{
+        normalizeHttpResponse(request);
+        const { headers  } = request.response;
+        const existingHeaders = Object.keys(headers);
+        if (existingHeaders.includes('Access-Control-Allow-Credentials')) {
+            options.credentials = headers['Access-Control-Allow-Credentials'] === 'true';
+        }
+        if (options.credentials) {
+            headers['Access-Control-Allow-Credentials'] = String(options.credentials);
+        }
+        if (options.headers && !existingHeaders.includes('Access-Control-Allow-Headers')) {
+            headers['Access-Control-Allow-Headers'] = options.headers;
+        }
+        if (options.methods && !existingHeaders.includes('Access-Control-Allow-Methods')) {
+            headers['Access-Control-Allow-Methods'] = options.methods;
+        }
+        if (!existingHeaders.includes('Access-Control-Allow-Origin')) {
+            const eventHeaders = request.event.headers ?? {};
+            const incomingOrigin = eventHeaders.Origin ?? eventHeaders.origin;
+            headers['Access-Control-Allow-Origin'] = options.getOrigin(incomingOrigin, options);
+        }
+        let vary = options.vary;
+        if (headers['Access-Control-Allow-Origin'] !== '*' && !vary) {
+            vary = 'Origin';
+        }
+        if (vary && !existingHeaders.includes('Vary')) {
+            headers.Vary = vary;
+        }
+        if (options.exposeHeaders && !existingHeaders.includes('Access-Control-Expose-Headers')) {
+            headers['Access-Control-Expose-Headers'] = options.exposeHeaders;
+        }
+        if (options.maxAge && !existingHeaders.includes('Access-Control-Max-Age')) {
+            headers['Access-Control-Max-Age'] = String(options.maxAge);
+        }
+        if (options.requestHeaders && !existingHeaders.includes('Access-Control-Request-Headers')) {
+            headers['Access-Control-Request-Headers'] = options.requestHeaders;
+        }
+        if (options.requestMethods && !existingHeaders.includes('Access-Control-Request-Methods')) {
+            headers['Access-Control-Request-Methods'] = options.requestMethods;
+        }
+        const httpMethod = getVersionHttpMethod[request.event.version ?? '1.0']?.(request.event);
+        if (!httpMethod) {
+            throw new Error('[http-cors] Unknown http event format');
+        }
+        if (httpMethod === 'OPTIONS' && options.cacheControl && !existingHeaders.includes('Cache-Control')) {
+            headers['Cache-Control'] = options.cacheControl;
+        }
+        request.response.headers = headers;
+    };
+    const httpCorsMiddlewareOnError = async (request)=>{
+        if (request.response === undefined) return;
+        return httpCorsMiddlewareAfter(request);
+    };
+    return {
+        after: httpCorsMiddlewareAfter,
+        onError: httpCorsMiddlewareOnError
+    };
+};
+const getVersionHttpMethod = {
+    '1.0': (event)=>event.httpMethod,
+    '2.0': (event)=>event.requestContext.http.method
+};
+export default httpCorsMiddleware;
 //# sourceMappingURL=index.js.map

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@middy/http-cors",
-  "version": "3.0.3",
+  "version": "3.0.4",
   "description": "CORS (Cross-Origin Resource Sharing) middleware for the middy framework",
   "type": "module",
   "engines": {
@@ -53,11 +53,11 @@
     "url": "https://github.com/middyjs/middy/issues"
   },
   "homepage": "https://middy.js.org",
-  "gitHead": "ea9e5e8cce754d0c467c7dd3ac9a7601149efea2",
+  "gitHead": "3e9bc83e791f943c71cd7003fc27f0a3692d83a1",
   "dependencies": {
-    "@middy/util": "3.0.3"
+    "@middy/util": "3.0.4"
   },
   "devDependencies": {
-    "@middy/core": "3.0.3"
+    "@middy/core": "3.0.4"
   }
 }