renaldi.brada1904/api-antrian-operasi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
61aa29ccca2fcea1871d4749cca892d26d3bf58d
api-antrian-operasi/internal/middleware/security.go
renaldybrada 577dc163c0 init security, add cors
2026-01-30 08:32:54 +07:00

22 lines
718 B
Go
Raw Blame History

package middleware
import (
"antrian-operasi/internal/config"
"time"
"github.com/gin-contrib/cors"
"github.com/gin-gonic/gin"
)
// SecureCORSConfig menyediakan konfigurasi CORS yang aman dan fleksibel
func SecureCORSConfig(cfg config.SecurityConfig) gin.HandlerFunc {
return cors.New(cors.Config{
AllowOrigins: cfg.TrustedOrigins,
AllowMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "HEAD", "OPTIONS"},
AllowHeaders: []string{"Origin", "Content-Length", "Content-Type", "Authorization"},
ExposeHeaders: []string{"Content-Length"},
AllowCredentials: true, // Hanya gunakan 'true' jika Anda benar-benar membutuhkannya (cookie, auth)
MaxAge: 12 * time.Hour,
})
}
Reference in New Issue View Git Blame Copy Permalink