(allowedOrigins: string)
| 57 | } |
| 58 | |
| 59 | function parseAllowedOrigins(allowedOrigins: string): string[] { |
| 60 | if (!allowedOrigins) { |
| 61 | return [] |
| 62 | } |
| 63 | if (allowedOrigins === '*') { |
| 64 | return ['*'] |
| 65 | } |
| 66 | return allowedOrigins |
| 67 | .split(',') |
| 68 | .map((origin) => origin.trim().toLowerCase()) |
| 69 | .filter((origin) => origin.length > 0) |
| 70 | } |
| 71 | |
| 72 | export function validateCorsConfig(): void { |
| 73 | if (getAllowedCorsOrigins() === '*' && getAllowCredentials()) { |