如何在 Netlify Serverless 功能中设置 CORS
[英]How to set up CORS in Netlify Serverless function
问题描述
I couldn't find any way how can I set up CORS using serverless netlify functions.
我找不到任何方法如何使用无服务器 netlify 函数设置 CORS。 I have used this function example to create my own e-mail form sender:我已经使用这个函数示例来创建我自己的电子邮件表单发件人:
const nodemailer = require('nodemailer');
exports.handler = function(event, context, callback) {
let transporter = nodemailer.createTransport({
host: 'smtp.gmail.com',
port: 465,
secure: true,
auth: {
type: 'OAuth2',
user: process.env.MAIL_LOGIN,
clientId: process.env.CLIENT_ID,
clientSecret: process.env.CLIENT_SECRET,
refreshToken: process.env.REFRESH_TOKEN,
accessToken: process.env.ACCESS_TOKEN
}
});
console.log(event.body);
transporter.sendMail({
from: process.env.MAIL_LOGIN,
to: process.env.MAIL_TO,
subject: process.env.SUBJECT + new Date().toLocaleString(),
text: event.body
}, function(error, info) {
if (error) {
callback(error);
} else {
callback(null, {
statusCode: 200,
body: "Ok"
});
}
});
}
But unfortunately, I am able to send it through every single domain which is not really safe as some people can send spam into that inbox.但不幸的是,我可以通过每个域发送它,这并不安全,因为有些人可以将垃圾邮件发送到该收件箱。
Would you be able to follow me to any example?你能跟我举个例子吗? Thank you in advance先感谢您
3 个解决方案
解决方案1
16 2019-09-17 12:22:13
You can do something like this:你可以这样做:
const headers = {
'Access-Control-Allow-Origin': '*',
'Access-Control-Allow-Headers': 'Content-Type',
'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE'
};
if (event.httpMethod !== 'POST') {
// To enable CORS
return {
statusCode: 200, // <-- Important!
headers,
body: 'This was not a POST request!'
};
}
Here is how I used it in a larger mapper function:这是我在更大的映射器函数中使用它的方式:
// src/customers.js
exports.handler = async (event, context) => {
const path = event.path.replace(/\.netlify\/functions\/[^\/]+/, '');
const segments = path.split('/').filter(e => e);
switch (event.httpMethod) {
case 'GET':
// e.g. GET /.netlify/functions/customers
if (segments.length === 0) {
return require('./customers/read-all').handler(event, context);
}
// e.g. GET /.netlify/functions/customers/123456
if (segments.length === 1) {
event.id = segments[0];
return require('./customers/read').handler(event, context);
} else {
return {
statusCode: 500,
body:
'too many segments in GET request, must be either /.netlify/functions/customers or /.netlify/functions/customers/123456'
};
}
case 'POST':
// e.g. POST /.netlify/functions/customers with a body of key value pair objects, NOT strings
return require('./customers/create').handler(event, context);
case 'PUT':
// e.g. PUT /.netlify/functions/customers/123456 with a body of key value pair objects, NOT strings
if (segments.length === 1) {
event.id = segments[0];
console.log(event.id);
return require('./customers/update').handler(event, context);
} else {
return {
statusCode: 500,
body:
'invalid segments in POST request, must be /.netlify/functions/customers/123456'
};
}
case 'DELETE':
// e.g. DELETE /.netlify/functions/customers/123456
if (segments.length === 1) {
event.id = segments[0];
return require('./customers/delete').handler(event, context);
} else {
return {
statusCode: 500,
body:
'invalid segments in DELETE request, must be /.netlify/functions/customers/123456'
};
}
case 'OPTIONS':
// To enable CORS
const headers = {
'Access-Control-Allow-Origin': '*',
'Access-Control-Allow-Headers': 'Content-Type',
'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE'
};
return {
statusCode: 200, // <-- Must be 200 otherwise pre-flight call fails
headers,
body: 'This was a preflight call!'
};
}
return {
statusCode: 500,
body: 'unrecognized HTTP Method, must be one of GET/POST/PUT/DELETE/OPTIONS'
};
};
I wrote a tutorial about how to work build serverless databases & netlify functions where I had CORS enabled, you can find the article here .我写了一篇关于如何在启用 CORS 的情况下构建无服务器数据库和 netlify 函数的教程,您可以在此处找到该文章。
解决方案2
4 2020-11-15 12:54:36
exports.handler = async (event, context) => {
return {
statusCode: 200,
headers: {
/* Required for CORS support to work */
'Access-Control-Allow-Origin': '*',
/* Required for cookies, authorization headers with HTTPS */
'Access-Control-Allow-Credentials': true
},
body: JSON.stringify({
message: 'Hello from netlify',
event: event,
})
}
}
解决方案3
0 2021-02-26 13:39:16
You can also use express with cors.您还可以将 express 与 cors 一起使用。 It's a way better dynamic handling of cors options.这是一种更好地动态处理 cors 选项的方法。
I extracted my own netlify configuration from my projects and pushed it to GitHub:我从我的项目中提取了我自己的 netlify 配置并将其推送到 GitHub:
https://github.com/kevludwig/netlify-functions-express https://github.com/kevludwig/netlify-functions-express
There is also an example sending mails using nodemailer.还有一个使用 nodemailer 发送邮件的示例。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.