Skip to content

Deprecate built-in CORS middleware #178

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
bajtos merged 1 commit into from
Sep 22, 2016
Merged

Deprecate built-in CORS middleware #178

bajtos merged 1 commit into from
Sep 22, 2016

Conversation

@bajtos
Copy link
Member

@bajtos bajtos commented Sep 21, 2016

Push the responsibility of enabling/configuring CORS back to the application developer.

This is a follow-up for strongloop/strong-remoting#352 and strongloop/strong-remoting#357 which removed (3.x)/deprecated (2.x) the built-in CORS middleware in strong-remoting.

@richardpringle please review

@bajtos
Deprecate built-in CORS middleware
d78f134 
Push the responsibility of enabling/configuring CORS back to the
application developer.
@bajtos bajtos added the #review label Sep 21, 2016
bajtos
bajtos commented Sep 21, 2016
View reviewed changes
test/explorer.test.js
it('can be disabled by configuration', function(done) {
var app = loopback();
app.set('remoting', { cors: { origin: false }});
app.set('remoting', { cors: false });
Copy link
Member Author

@bajtos bajtos Sep 21, 2016

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This change is needed to fix npm test when using LB 3.x. Before, the tests were failing because remoting.cors was rejected by LB 3.x runtime.

@richardpringle
Copy link
Contributor

richardpringle commented Sep 21, 2016

Don't understand why it's necessary to test everything with cors: false. It shouldn't make a difference in the tests should it?

This was referenced Sep 22, 2016
Merged
Merged
@bajtos
Copy link
Member Author

bajtos commented Sep 22, 2016

Don't understand why it's necessary to test everything with cors: false. It shouldn't make a difference in the tests should it?

Let's discuss here: strongloop/strong-remoting#357 (comment)

This was referenced Sep 22, 2016
Closed
Merged
@richardpringle
Copy link
Contributor

richardpringle commented Sep 22, 2016

Approved!

@bajtos bajtos merged commit bce9bfe into master Sep 22, 2016
@bajtos bajtos deleted the feature/deprecate-cors branch September 22, 2016 12:23
@bajtos bajtos removed the #review label Sep 22, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@richardpringle richardpringle richardpringle approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@richardpringle richardpringle

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@bajtos @richardpringle