|
|
@@ -12,14 +12,22 @@ require('./config/db')()
|
|
|
|
|
|
app.use(logger('dev'))
|
|
|
app.use(express.json())
|
|
|
-app.use(cors())
|
|
|
+app.use(
|
|
|
+ cors({
|
|
|
+ origin: process.env.CORS_ORIGIN || '*',
|
|
|
+ credentials: true,
|
|
|
+ })
|
|
|
+)
|
|
|
|
|
|
app.use(express.urlencoded({ extended: false }))
|
|
|
app.use(cookieParser(process.env.SRU51))
|
|
|
// app.use(csrf( ['GET', 'HEAD', 'OPTIONS'], ['/v1/auth/login', /\/v1\/auto\//i, /v2/i]))
|
|
|
|
|
|
app.use(express.static(path.join(__dirname, 'public')))
|
|
|
-app.use((req, res, next) => {req.data = {}; return next()})
|
|
|
+app.use((req, res, next) => {
|
|
|
+ req.data = {}
|
|
|
+ return next()
|
|
|
+})
|
|
|
|
|
|
// routes
|
|
|
app.use('/', require('./routes'))
|
