Skip to content

Commit

Permalink
documented cors max age, allow credentials, expose headers
Browse files Browse the repository at this point in the history
  • Loading branch information
@dreamhead
dreamhead committed Aug 20, 2023
1 parent 92430da commit b26518e
Showing 1 changed file with 108 additions and 3 deletions.
111 changes: 108 additions & 3 deletions moco-doc/apis.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,8 +8,6 @@ That means if we get the expected request and then return our response. Now, you

Table of Contents
=================
- [HTTP(s) APIs](#https-apis)
- [Table of Contents](#table-of-contents)
- [Composite Java API Design](#composite-java-api-design)
- [Description as comment](#description-as-comment)
- [Request](#request)
Expand Down Expand Up @@ -62,6 +60,9 @@ Table of Contents
- [CORS with allowOrigin/Access-Control-Allow-Origin](#cors-with-alloworiginaccess-control-allow-origin)
- [CORS with allowMethods/Access-Control-Allow-Methods](#cors-with-allowmethodsaccess-control-allow-methods)
- [CORS with allowHeaders/Access-Control-Allow-Headers](#cors-with-allowheadersaccess-control-allow-headers)
- [CORS with maxAge/Access-Control-Max-Age](#cors-with-maxageaccess-control-max-age)
- [CORS with allowCredentials/Access-Control-Allow-Credentials](#cors-with-allowcredentialsaccess-control-allow-credentials)
- [CORS with exposeHeaders/Access-Control-Expose-Headers](#cors-with-exposeheadersaccess-control-expose-headers)
- [Attachment](#attachment)
- [Latency](#latency)
- [Sequence](#sequence)
Expand Down Expand Up @@ -107,7 +108,6 @@ Table of Contents
- [Log](#log)
- [Log with verifier](#log-with-verifier)


## Composite Java API Design
Moco Java API is designed in functional fashion which means you can composite any request or response easily.

Expand Down Expand Up @@ -1852,6 +1852,111 @@ In JSON API, you can also use `Access-Control-Allow-Methods` directly.
}
```

#### CORS with maxAge/Access-Control-Max-Age

You can allow CORS with specific max age with `cors` operator with `maxAge` argument, which provides `Access-Control-Max-Age` header.

* Java API
```java
server.response(cors(maxAge(1)));
```

* JSON
```json
{
"response" :
{
"cors" :
{
"maxAge" : 1
}
}
}
```

In JSON API, you can also use `Access-Control-Max-Age` directly.
```json
{
"response" :
{
"cors" :
{
"Access-Control-Max-Age" : 1
}
}
}
```

#### CORS with allowCredentials/Access-Control-Allow-Credentials

You can allow CORS with specific credentials with `cors` operator with `allowCredentials` argument, which provides `Access-Control-Allow-Credentials` header.

* Java API
```java
server.response(cors(allowCredentials(true)));
```

* JSON
```json
{
"response" :
{
"cors" :
{
"allowCredentials" : true
}
}
}
```

In JSON API, you can also use `Access-Control-Allow-Credentials` directly.
```json
{
"response" :
{
"cors" :
{
"Access-Control-Allow-Credentials" : true
}
}
}
```

#### CORS with exposeHeaders/Access-Control-Expose-Headers

You can allow CORS with specific expose headers with `cors` operator with `exposeHeaders` argument, which provides `Access-Control-Expose-Headers` header.

* Java API
```java
server.response(cors(exposeHeaders("X-Header", "Y-Header")));
```

* JSON
```json
{
"response" :
{
"cors" :
{
"exposeHeaders" : ["X-Header", "Y-Header"]
}
}
}
```

In JSON API, you can also use `Access-Control-Expose-Headers` directly.
```json
{
"response" :
{
"cors" :
{
"Access-Control-Expose-Headers" : ["X-Header", "Y-Header"]
}
}
}
```

### Attachment
**@Since 0.10.0**

Expand Down

0 comments on commit b26518e

Please sign in to comment.