How can I add CORS to this code snippet?
(def app
(api
{:swagger {:ui "/docs"
:spec "/swagger.json"}}
(GET "/route-a" [] "a")
(GET "/route-b" [] "b")
(GET "/route-c" [] "c")))
I would like to use https://github.com/r0man/ring-cors and have tried this, but it did not seem to do anything. I would like to see the response header contain Access-Control-Allow-Origin but it is missing.
(-> (api
{:swagger {:ui "/docs"
:spec "/swagger.json"}}
(GET "/route-a" [] "a")
(GET "/route-b" [] "b")
(GET "/route-c" [] "c"))
(wrap-cors :access-control-allow-origin #"http://localhost:81"
:access-control-allow-headers ["Origin" "X-Requested-With"
"Content-Type" "Accept"]
:access-control-allow-methods [:get :put :post :delete :options]))
The CORS-specific response headers are returned only if the request has an Origin
header that matches the specified regex (when a request is made using XMLHttpRequest
in browser, the Origin header is added automatically).
If you try:
curl -vH "Origin: http://localhost:81" localhost:3000/route-a
(assuming that your API is available on port 3000), you will see that the necessary response headers are added. AJAX requests from http://localhost:81
should also work.