Feat: added CORS matching all routes (#578)

Added a config file. Nextjs will look for a next.config.js file on 'next dev' and will use the following configurations Functionality: Manages HTTP response headers. Header Configuration: Allows any origin for all routes. Specifies allowed methods and headers for CORS. Result: we should be able to remove any CORS browser extensions that bypass cross-origin requests that would otherwise be restricted
near · Feb 23, 2024 · 7387fdc · 7387fdc
1 parent 22b582e
commit 7387fdc
Showing 1 changed file with 25 additions and 0 deletions.
diff --git a/frontend/next.config.js b/frontend/next.config.js
@@ -0,0 +1,25 @@
+const nextConfig = {
+  async headers() {
+    return [
+      {
+        source: "/(.*)", // Match all routes
+        headers: [
+          {
+            key: "Access-Control-Allow-Origin",
+            value: "*", // Allow requests from any origin
+          },
+          {
+            key: "Access-Control-Allow-Methods",
+            value: "GET, POST, PUT, DELETE, OPTIONS",
+          },
+          {
+            key: "Access-Control-Allow-Headers",
+            value: "Content-Type, Authorization",
+          },
+        ],
+      },
+    ];
+  },
+};
+
+module.exports = nextConfig;