openclawd/docfast
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: BUG-006 copy feedback, BUG-008 white border CSS reset, BUG-010 CORS allow all origins

Browse source
This commit is contained in:
OpenClaw 2026-02-14 15:41:22 +00:00
parent d8bc3fd8e6
commit 53bebc0119
3 changed files with 6 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

7
src/index.ts
View file

@ -24,11 +24,8 @@ app.use(helmet({ crossOriginResourcePolicy: { policy: "cross-origin" } }));
// CORS — allow browser requests from the landing page
app.use((req, res, next) => {
const origin = req.headers.origin;
const allowed = ["https://docfast.dev", "http://localhost:3100"];
if (origin && allowed.includes(origin)) {
res.setHeader("Access-Control-Allow-Origin", origin);
}
// Allow all origins — public API
res.setHeader("Access-Control-Allow-Origin", "*");
res.setHeader("Access-Control-Allow-Methods", "GET, POST, OPTIONS");
res.setHeader("Access-Control-Allow-Headers", "Content-Type, Authorization, X-API-Key");
res.setHeader("Access-Control-Max-Age", "86400");