fix: add auth cors header mw

jsdelivr · Sep 11, 2024 · fc6c80a · fc6c80a
1 parent 9cffdd2
commit fc6c80a
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 1 deletion.
diff --git a/config/development.cjs b/config/development.cjs
@@ -1,4 +1,9 @@
 module.exports = {
+	server: {
+		session: {
+			cookieSecret: 'xxx',
+		},
+	},
 	redis: {
 		url: 'redis://localhost:16379',
 		socket: {

diff --git a/src/limits/route/get-limits.ts b/src/limits/route/get-limits.ts
@@ -3,6 +3,7 @@ import { getRateLimitState } from '../../lib/rate-limiter.js';
 import type { ExtendedContext } from '../../types.js';
 import { credits } from '../../lib/credits.js';
 import { authenticate } from '../../lib/http/middleware/authenticate.js';
+import { corsAuthHandler } from '../../lib/http/middleware/cors.js';
 
 const handle = async (ctx: ExtendedContext): Promise<void> => {
 	const [ rateLimitState, remainingCredits ] = await Promise.all([
@@ -23,5 +24,5 @@ const handle = async (ctx: ExtendedContext): Promise<void> => {
 };
 
 export const registerLimitsRoute = (router: Router): void => {
-	router.get('/limits', '/limits', authenticate(), handle);
+	router.get('/limits', '/limits', corsAuthHandler(), authenticate(), handle);
 };