fix: cors issue for http server

2025-06-26 18:27:28 +00:00 · 2025-01-23 15:44:22 +01:00
parent af7b8e7204
commit d9ef2152b7
3 changed files with 34 additions and 2 deletions
--- a/api/src/setting/services/setting.service.ts
+++ b/api/src/setting/services/setting.service.ts
@@ -14,7 +14,10 @@ import { Cache } from 'cache-manager';
 import { config } from '@/config';
 import { Config } from '@/config/types';
 import { LoggerService } from '@/logger/logger.service';
-import { SETTING_CACHE_KEY } from '@/utils/constants/cache';
+import {
+  ALLOWED_DOMAINS_CACHE_KEY,
+  SETTING_CACHE_KEY,
+} from '@/utils/constants/cache';
 import { Cacheable } from '@/utils/decorators/cacheable.decorator';
 import { BaseService } from '@/utils/generics/base-service';

@@ -110,6 +113,7 @@ export class SettingService extends BaseService<Setting> {
   */
  async clearCache() {
    this.cacheManager.del(SETTING_CACHE_KEY);
+    this.cacheManager.del(ALLOWED_DOMAINS_CACHE_KEY);
  }

  /**
@@ -121,6 +125,23 @@ export class SettingService extends BaseService<Setting> {
    this.clearCache();
  }

+  /**
+   * Retrieves allowed_domains from the cache if available, or loads them from the
+   * repository and caches the result.
+   *
+   * @returns A promise that resolves to a Set of`allowed_domains` string.
+   */
+  @Cacheable(ALLOWED_DOMAINS_CACHE_KEY)
+  async getAllowedDomains() {
+    // combines all allowed_doamins and whitelist them for cors
+    const settings = await this.find({ label: 'allowed_domains' });
+
+    const whiteListedOrigins = new Set(
+      settings.flatMap((setting) => setting.value.split(',')),
+    );
+    return whiteListedOrigins;
+  }
+
  /**
   * Retrieves settings from the cache if available, or loads them from the
   * repository and caches the result.