rede5/gohorsejobs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: allow all gohorsejobs.com subdomains in CORS for backoffice

Browse source
This commit is contained in:
Tiago Yamamoto 2026-02-23 11:51:31 -06:00
parent fd2fa328ad
commit 01a6cab984
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
backoffice/src/main.ts
View file

@ -51,7 +51,10 @@ async function bootstrap() {
...envOrigins,
].filter(Boolean);
if (!origin || allowedOrigins.includes(origin)) {
// Allow all *.gohorsejobs.com subdomains (http and https)
const gohorsePattern = /^https?:\/\/([a-z0-9-]+\.)*gohorsejobs\.com$/;
if (!origin || allowedOrigins.includes(origin) || gohorsePattern.test(origin)) {
callback(null, true);
} else {
callback(new Error('Not allowed by CORS'), false);