Merge pull request #2131 from cul-it/DACCESS-314

DACCESS-314 - CORS support for status page
cul-it · Jun 3, 2024 · 95d3d61 · 95d3d61
2 parents 3e166bf + da45b2b
commit 95d3d61
Show file tree

Hide file tree

Showing 6 changed files with 27 additions and 0 deletions.
diff --git a/blacklight-cornell/Gemfile b/blacklight-cornell/Gemfile
@@ -147,3 +147,4 @@ gem 'uri', '0.12.2'
 # gem 'pkg-config', '1.5.4'
 gem 'status-page'
 gem 'concurrent-ruby', '1.2.3', require: 'concurrent'
+gem "rack-cors", require: "rack/cors"
diff --git a/blacklight-cornell/Gemfile.lock b/blacklight-cornell/Gemfile.lock
@@ -618,6 +618,8 @@ GEM
     rack (2.2.9)
     rack-contrib (2.4.0)
       rack (< 4)
+    rack-cors (2.0.2)
+      rack (>= 2.0.0)
     rack-protection (3.2.0)
       base64 (>= 0.1.0)
       rack (~> 2.2, >= 2.2.4)
@@ -928,6 +930,7 @@ DEPENDENCIES
   pry
   pry-byebug
   puma (~> 6.4, >= 6.4.2)
+  rack-cors
   rails (~> 6.1.7)
   rb-inotify
   rb-readline (~> 0.5.x)

diff --git a/blacklight-cornell/app/controllers/status_page.rb b/blacklight-cornell/app/controllers/status_page.rb
@@ -0,0 +1,5 @@
+class StatusController < ApplicationController
+  def index
+    render html: StatusPage.check.html
+  end
+end
diff --git a/blacklight-cornell/config/application.rb b/blacklight-cornell/config/application.rb
@@ -98,6 +98,14 @@ class Application < Rails::Application
 
     # Search results limit, to prevent deep paging issues
     config.search_limit = 20000
+
+    config.middleware.insert_before 0, Rack::Cors do
+      allow do
+        origins "https://amplify-pages.d9ohqorlfrbif.amplifyapp.com", "*.library.cornell.edu"
+        resource "/status", headers: :any, methods: [:get]
+        resource '/status.json', headers: :any, methods: [:get]
+      end
+    end
   end
 end
 if true

diff --git a/blacklight-cornell/config/initializers/cors.rb b/blacklight-cornell/config/initializers/cors.rb
@@ -0,0 +1,8 @@
+Rails.application.config.middleware.insert_before 0, Rack::Cors do
+  allow do
+    origins "*.library.cornell.edu"  # adjust this if you want to limit origins
+    resource "*",
+      headers: :any,
+      methods: [:get, :post, :put, :patch, :delete, :options, :head]
+  end
+end
diff --git a/blacklight-cornell/config/routes.rb b/blacklight-cornell/config/routes.rb
@@ -234,4 +234,6 @@
 #  put 'aeon/scan_aeon/:id' => 'aeon#scan_aeon', :as => 'scan_paeon', :constraints => { :id => /.+/}
   mount BlacklightCornellRequests::Engine => '/request', :as => 'blacklight_cornell_request'
   mount MyAccount::Engine => '/myaccount', :as => 'my_account'
+
+  get "/status", to: "status#index"
 end