CORS gin's middleware
Gin middleware/handler to enable CORS support.
Usage
Start using it
Download and install it:
go get github.com/gin-contrib/cors
Import it in your code:
import "github.com/gin-contrib/cors"
Canonical example
package main
import (
"time"
"github.com/gin-contrib/cors"
"github.com/gin-gonic/gin"
)
func main() {
router := gin.Default()
router.Use(cors.New(cors.Config{
AllowOrigins: []string{"https://foo.com"},
AllowMethods: []string{"PUT", "PATCH"},
AllowHeaders: []string{"Origin"},
ExposeHeaders: []string{"Content-Length"},
AllowCredentials: true,
AllowOriginFunc: func(origin string) bool {
return origin == "https://github.com"
},
MaxAge: 12 * time.Hour,
}))
router.Run()
}
Using DefaultConfig as start point
func main() {
router := gin.Default()
config := cors.DefaultConfig()
config.AllowOrigins = []string{"http://google.com"}
router.Use(cors.New(config))
router.Run()
}
Note: while Default() allows all origins, DefaultConfig() does not and you will still have to use AllowAllOrigins.
Default() allows all origins
func main() {
router := gin.Default()
router.Use(cors.Default())
router.Run()
}
Using all origins disables the ability for Gin to set cookies for clients. When dealing with credentials, don't allow all origins.