I'm having some issues with CORS when I access my ...
# helpp
PĂ„l Brattberg
03/17/2021, 8:49 PMI'm having some issues with CORS when I access my api from another webserver (actually a Flutter app running in a browser). It's mainly pre-flight that is acting up. I didn't see anything special regarding CORS from SST, it's all standard CDK here?
Anybody got it fixed in a nice way? đ
f
Frank
03/17/2021, 8:50 PM
Hey @PĂ„l Brattberg, are you using the
sst.Apip
PĂ„l Brattberg
03/17/2021, 8:51 PMNot at the moment, but since I got the authorizer running, now might be agood time to try. Is there CORS-support built in?
f
Frank
03/17/2021, 8:55 PM
yeah CORS is enabled by default with all (ie. â*â) headers, methods, and origins
Frank
03/17/2021, 8:55 PM
You can configure it further like this https://docs.serverless-stack.com/constructs/Api#configuring-cors
p
PĂ„l Brattberg
03/17/2021, 9:09 PMtesting
PĂ„l Brattberg
03/17/2021, 9:18 PMHey! Seems to work very nicely! đ
f
Frank
03/17/2021, 9:18 PM
Nice!
p
PĂ„l Brattberg
03/17/2021, 9:19 PMBtw, there's no way to simple skip authorization for one route and using auth for the rest is there?
PĂ„l Brattberg
03/17/2021, 9:19 PMAll routes are secure with the exception of /ping etc
f
Frank
03/17/2021, 9:21 PM
You can set the
authorizationType/pingFrank
03/17/2021, 9:21 PM
similar to this example, https://docs.serverless-stack.com/constructs/Api#adding-jwt-authorization-to-a-specific-route
p
PĂ„l Brattberg
03/17/2021, 9:21 PMAh, beautiful. Thanks for all your help!