default is handled in core now

nitrictech · Oct 23, 2023 · 1d93ef0 · 1d93ef0
1 parent 060dba7
commit 1d93ef0
Showing 1 changed file with 4 additions and 19 deletions.
diff --git a/src/resources/api.ts b/src/resources/api.ts
@@ -348,15 +348,6 @@ interface ApiDetails {
   url: string;
 }
 
-const defaultCorsOptions: CorsOptions = {
-  allowOrigins: ['*'],
-  allowHeaders: ['Content-Type', 'Authorization'],
-  allowMethods: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE', 'OPTIONS'],
-  allowCredentials: false,
-  exposeHeaders: [],
-  maxAge: '300 seconds',
-};
-
 /**
  * API Resource
  *
@@ -423,11 +414,6 @@ export class Api<SecurityDefs extends string> extends Base<ApiDetails> {
       middleware: [...this.middleware, ...routeMiddleware],
     });
 
-    if (this.cors && !this.routes.some((rr) => rr.path === r.path)) {
-      // register options handler
-      r.options([]);
-    }
-
     this.routes.push(r);
 
     return r;
@@ -604,18 +590,17 @@ export class Api<SecurityDefs extends string> extends Base<ApiDetails> {
     }
 
     if (cors) {
-      const corsConfig = {
-        ...defaultCorsOptions,
-        ...(typeof cors === 'object' ? cors : undefined),
-      };
+      const corsConfig = typeof cors === 'object' ? cors : {};
       const corsDef = new ApiCorsDefinition();
 
       corsDef.setAllowcredentials(corsConfig.allowCredentials);
       corsDef.setAlloworiginsList(corsConfig.allowOrigins);
       corsDef.setAllowheadersList(corsConfig.allowHeaders);
       corsDef.setAllowmethodsList(corsConfig.allowMethods);
       corsDef.setExposeheadersList(corsConfig.exposeHeaders);
-      corsDef.setMaxage(durationToSeconds(corsConfig.maxAge));
+      corsDef.setMaxage(
+        corsConfig.maxAge ? durationToSeconds(corsConfig.maxAge) : undefined
+      );
 
       apiResource.setCors(corsDef);
     }