✨ feat: added cors configs #34

Author: pnguyen215

.gitignore

@@ -36,5 +36,3 @@ main.go
 # Logs
 logs/
 logs
-keys/
-keys

common/common_config.go

@@ -5,3 +5,117 @@ const (
 	EntryKeyMysql    = "mysql"
 	EntryKeyMongodb  = "mongodb"
 )
+
+// Define constants for HTTP header names
+const (
+	HeaderAccept                        = "Accept"
+	HeaderAcceptCharset                 = "Accept-Charset"
+	HeaderAcceptEncoding                = "Accept-Encoding"
+	HeaderAcceptLanguage                = "Accept-Language"
+	HeaderAuthorization                 = "Authorization"
+	HeaderCacheControl                  = "Cache-Control"
+	HeaderContentDisposition            = "Content-Disposition"
+	HeaderContentEncoding               = "Content-Encoding"
+	HeaderContentLength                 = "Content-Length"
+	HeaderContentType                   = "Content-Type"
+	HeaderCookie                        = "Cookie"
+	HeaderHost                          = "Host"
+	HeaderOrigin                        = "Origin"
+	HeaderReferer                       = "Referer"
+	HeaderUserAgent                     = "User-Agent"
+	HeaderIfMatch                       = "If-Match"
+	HeaderIfNoneMatch                   = "If-None-Match"
+	HeaderETag                          = "ETag"
+	HeaderLastModified                  = "Last-Modified"
+	HeaderLocation                      = "Location"
+	HeaderPragma                        = "Pragma"
+	HeaderRetryAfter                    = "Retry-After"
+	HeaderServer                        = "Server"
+	HeaderWWWAuthenticate               = "WWW-Authenticate"
+	HeaderDate                          = "Date"
+	HeaderExpires                       = "Expires"
+	HeaderAge                           = "Age"
+	HeaderConnection                    = "Connection"
+	HeaderContentLanguage               = "Content-Language"
+	HeaderForwarded                     = "Forwarded"
+	HeaderIfModifiedSince               = "If-Modified-Since"
+	HeaderUpgrade                       = "Upgrade"
+	HeaderVia                           = "Via"
+	HeaderWarning                       = "Warning"
+	HeaderXForwardedFor                 = "X-Forwarded-For"
+	HeaderXForwardedHost                = "X-Forwarded-Host"
+	HeaderXForwardedProto               = "X-Forwarded-Proto"
+	HeaderXRequestedWith                = "X-Requested-With"
+	HeaderXFrameOptions                 = "X-Frame-Options"
+	HeaderXXSSProtection                = "X-XSS-Protection"
+	HeaderXContentTypeOpts              = "X-Content-Type-Options"
+	HeaderContentSecurity               = "Content-Security-Policy"
+	HeaderStrictTransport               = "Strict-Transport-Security"
+	HeaderPublicKeyPins                 = "Public-Key-Pins"
+	HeaderExpectCT                      = "Expect-CT"
+	HeaderAccessControlAllowOrigin      = "Access-Control-Allow-Origin"
+	HeaderAccessControlAllowMethods     = "Access-Control-Allow-Methods"
+	HeaderAccessControlAllowHeaders     = "Access-Control-Allow-Headers"
+	HeaderAccessControlMaxAge           = "Access-Control-Max-Age"
+	HeaderAccessControlExposeHeaders    = "Access-Control-Expose-Headers"
+	HeaderAccessControlRequestMethod    = "Access-Control-Request-Method"
+	HeaderAccessControlRequestHeaders   = "Access-Control-Request-Headers"
+	HeaderAcceptPatch                   = "Accept-Patch"
+	HeaderDeltaBase                     = "Delta-Base"
+	HeaderIfUnmodifiedSince             = "If-Unmodified-Since"
+	HeaderAcceptRanges                  = "Accept-Ranges"
+	HeaderContentRange                  = "Content-Range"
+	HeaderAllow                         = "Allow"
+	HeaderAccessControlAllowCredentials = "Access-Control-Allow-Credentials"
+	HeaderXCSRFToken                    = "X-CSRF-Token"
+	HeaderXRealIP                       = "X-Real-IP"
+	HeaderContentSecurityPolicy         = "Content-Security-Policy"
+	HeaderReferrerPolicy                = "Referrer-Policy"
+	HeaderExpectCt                      = "Expect-CT"
+	HeaderStrictTransportSecurity       = "Strict-Transport-Security"
+	HeaderUpgradeInsecureRequests       = "Upgrade-Insecure-Requests"
+)
+
+// Define constants for media types
+const (
+	MediaTypeApplicationJSON         = "application/json"
+	MediaTypeApplicationXML          = "application/xml"
+	MediaTypeApplicationForm         = "application/x-www-form-urlencoded"
+	MediaTypeApplicationOctetStream  = "application/octet-stream"
+	MediaTypeTextPlain               = "text/plain"
+	MediaTypeTextHTML                = "text/html"
+	MediaTypeImageJPEG               = "image/jpeg"
+	MediaTypeImagePNG                = "image/png"
+	MediaTypeImageGIF                = "image/gif"
+	MediaTypeAudioMP3                = "audio/mpeg"
+	MediaTypeAudioWAV                = "audio/wav"
+	MediaTypeVideoMP4                = "video/mp4"
+	MediaTypeVideoAVI                = "video/x-msvideo"
+	MediaTypeApplicationPDF          = "application/pdf"
+	MediaTypeApplicationMSWord       = "application/msword"
+	MediaTypeApplicationMSPowerPoint = "application/vnd.ms-powerpoint"
+	MediaTypeApplicationExcel        = "application/vnd.ms-excel"
+	MediaTypeApplicationZip          = "application/zip"
+	MediaTypeApplicationGzip         = "application/gzip"
+	MediaTypeMultipartFormData       = "multipart/form-data"
+	MediaTypeImageBMP                = "image/bmp"
+	MediaTypeImageTIFF               = "image/tiff"
+	MediaTypeTextCSS                 = "text/css"
+	MediaTypeTextJavaScript          = "text/javascript"
+	MediaTypeApplicationJSONLD       = "application/ld+json"
+	MediaTypeApplicationRDFXML       = "application/rdf+xml"
+	MediaTypeApplicationGeoJSON      = "application/geo+json"
+	MediaTypeApplicationMsgpack      = "application/msgpack"
+	MediaTypeApplicationOgg          = "application/ogg"
+	MediaTypeApplicationGraphQL      = "application/graphql"
+	MediaTypeApplicationProtobuf     = "application/protobuf"
+	MediaTypeImageWebP               = "image/webp"
+	MediaTypeFontWOFF                = "font/woff"
+	MediaTypeFontWOFF2               = "font/woff2"
+	MediaTypeAudioFLAC               = "audio/flac"
+	MediaTypeVideoWebM               = "video/webm"
+	MediaTypeApplicationDart         = "application/dart"
+	MediaTypeApplicationXLSX         = "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet"
+	MediaTypeApplicationPPTX         = "application/vnd.openxmlformats-officedocument.presentationml.presentation"
+	MediaTypeApplicationGRPC         = "application/grpc"
+)

configx/configx.go

@@ -12,6 +12,7 @@ import (
 	"github.com/sivaosorg/govm/asterisk"
 	"github.com/sivaosorg/govm/bot/slack"
 	"github.com/sivaosorg/govm/bot/telegram"
+	"github.com/sivaosorg/govm/corsx"
 	"github.com/sivaosorg/govm/logger"
 	"github.com/sivaosorg/govm/mongodb"
 	"github.com/sivaosorg/govm/mysql"
@@ -173,6 +174,7 @@ func GetKeysDefaultConfig() *KeysConfig {
 	k.SetRedis(*redisx.GetRedisConfigSample().SetEnabled(false))
 	k.SetTelegram(*telegram.GetTelegramConfigSample().SetEnabled(false))
 	k.SetSlack(*slack.GetSlackConfigSample().SetEnabled(false))
+	k.SetCors(*corsx.GetCorsConfigSample().SetEnabled(false))
 	return k
 }
 
@@ -193,6 +195,7 @@ func (KeysConfig) WriteDefaultConfig() {
 		"redis":    fmt.Sprintf("################################\n%s\n%s\n################################", "Redis Config", timex.With(time.Now()).Format(timex.DateTimeFormYearMonthDayHourMinuteSecond)),
 		"telegram": fmt.Sprintf("################################\n%s\n%s\n################################", "Telegram Config", timex.With(time.Now()).Format(timex.DateTimeFormYearMonthDayHourMinuteSecond)),
 		"slack":    fmt.Sprintf("################################\n%s\n%s\n################################", "Slack Config", timex.With(time.Now()).Format(timex.DateTimeFormYearMonthDayHourMinuteSecond)),
+		"cors":     fmt.Sprintf("################################\n%s\n%s\n################################", "Cors Config", timex.With(time.Now()).Format(timex.DateTimeFormYearMonthDayHourMinuteSecond)),
 	})
 	err = CreateConfigWithComments[KeysConfig](filepath.Join(".", FilenameDefaultConf), *m)
 	if err != nil {
@@ -275,6 +278,16 @@ func (ClusterMultiTenancyKeysConfig) ReadDefaultConfig() {
 	logger.Infof("%+v", keys)
 }
 
+func (ClusterMultiTenancyKeysConfig) ReadCurrentConfig() (ClusterMultiTenancyKeysConfig, error) {
+	keys, err := ReadConfig[ClusterMultiTenancyKeysConfig](filepath.Join(".", FilenameDefaultClusterMultiTenantConf))
+	return *keys, err
+}
+
+func (ClusterMultiTenancyKeysConfig) ReadCurrentConfigWith(filename string) (ClusterMultiTenancyKeysConfig, error) {
+	keys, err := ReadConfig[ClusterMultiTenancyKeysConfig](filepath.Join(".", filename))
+	return *keys, err
+}
+
 func ReadConfig[T any](path string) (*T, error) {
 	file, err := os.Open(path)
 	if err != nil {
@@ -385,3 +398,13 @@ func (k *KeysConfig) SetSlackCursor(value *slack.SlackConfig) *KeysConfig {
 	k.Slack = *value
 	return k
 }
+
+func (k *KeysConfig) SetCors(value corsx.CorsConfig) *KeysConfig {
+	k.Cors = value
+	return k
+}
+
+func (k *KeysConfig) SetCorsCursor(value *corsx.CorsConfig) *KeysConfig {
+	k.Cors = *value
+	return k
+}

configx/configx_model.go

@@ -4,6 +4,7 @@ import (
 	"github.com/sivaosorg/govm/asterisk"
 	"github.com/sivaosorg/govm/bot/slack"
 	"github.com/sivaosorg/govm/bot/telegram"
+	"github.com/sivaosorg/govm/corsx"
 	"github.com/sivaosorg/govm/mongodb"
 	"github.com/sivaosorg/govm/mysql"
 	"github.com/sivaosorg/govm/postgres"
@@ -29,6 +30,7 @@ type KeysConfig struct {
 	Redis    redisx.RedisConfig       `json:"redis,omitempty" yaml:"redis"`
 	Telegram telegram.TelegramConfig  `json:"telegram,omitempty" yaml:"telegram"`
 	Slack    slack.SlackConfig        `json:"slack,omitempty" yaml:"slack"`
+	Cors     corsx.CorsConfig         `json:"cors,omitempty" yaml:"cors"`
 }
 
 type MultiTenancyKeysConfig struct {

corsx/cors.go

@@ -0,0 +1,122 @@
+package corsx
+
+import (
+	"log"
+	"net/http"
+	"strconv"
+	"strings"
+
+	"github.com/sivaosorg/govm/common"
+	"github.com/sivaosorg/govm/restify"
+	"github.com/sivaosorg/govm/utils"
+)
+
+func NewCorsConfig() *CorsConfig {
+	c := &CorsConfig{}
+	c.SetMaxAge(0)
+	return c
+}
+
+func (c *CorsConfig) SetEnabled(value bool) *CorsConfig {
+	c.IsEnabled = value
+	return c
+}
+
+func (c *CorsConfig) SetAllowCredentials(value bool) *CorsConfig {
+	c.AllowCredentials = value
+	return c
+}
+
+func (c *CorsConfig) SetMaxAge(value int) *CorsConfig {
+	if value < 0 {
+		log.Panicf("Invalid max-age: %v", value)
+	}
+	c.MaxAge = value
+	return c
+}
+
+func (c *CorsConfig) SetAllowedOrigins(values []string) *CorsConfig {
+	c.AllowedOrigins = values
+	return c
+}
+
+func (c *CorsConfig) AppendAllowedOrigins(values ...string) *CorsConfig {
+	c.AllowedOrigins = append(c.AllowedOrigins, values...)
+	return c
+}
+
+func (c *CorsConfig) SetAllowedHeaders(values []string) *CorsConfig {
+	c.AllowedHeaders = values
+	return c
+}
+
+func (c *CorsConfig) AppendAllowedHeaders(values ...string) *CorsConfig {
+	c.AllowedHeaders = append(c.AllowedHeaders, values...)
+	return c
+}
+
+func (c *CorsConfig) SetAllowedMethods(values []string) *CorsConfig {
+	c.AllowedMethods = values
+	return c
+}
+
+func (c *CorsConfig) AppendAllowedMethods(values ...string) *CorsConfig {
+	c.AllowedMethods = append(c.AllowedMethods, values...)
+	return c
+}
+
+func (c *CorsConfig) SetExposedHeaders(values []string) *CorsConfig {
+	c.ExposedHeaders = values
+	return c
+}
+
+func (c *CorsConfig) AppendExposedHeaders(values ...string) *CorsConfig {
+	c.ExposedHeaders = append(c.ExposedHeaders, values...)
+	return c
+}
+
+func (c *CorsConfig) Json() string {
+	return utils.ToJson(c)
+}
+
+func GetCorsConfigSample() *CorsConfig {
+	c := NewCorsConfig().
+		SetEnabled(true).
+		SetMaxAge(0).
+		SetAllowCredentials(true).
+		AppendAllowedOrigins("*").
+		AppendAllowedMethods(restify.MethodGet, restify.MethodPost, restify.MethodPut, restify.MethodDelete, restify.MethodOptions).
+		SetExposedHeaders(make([]string, 0)).
+		AppendAllowedHeaders(common.HeaderOrigin, common.HeaderAccept, common.HeaderContentType, common.HeaderAuthorization)
+	return c
+}
+
+// ApplyCorsHeaders applies CORS headers to an HTTP response based on the configuration.
+func (c *CorsConfig) ApplyCorsHeaders(w http.ResponseWriter, r *http.Request) {
+	if !c.IsEnabled {
+		return
+	}
+	origin := r.Header.Get(common.HeaderOrigin)
+	if c.isOriginAllowed(origin) {
+		w.Header().Set(common.HeaderAccessControlAllowOrigin, origin)
+		w.Header().Set(common.HeaderAccessControlAllowMethods, strings.Join(c.AllowedMethods, ","))
+		w.Header().Set(common.HeaderAccessControlAllowHeaders, strings.Join(c.AllowedHeaders, ","))
+		w.Header().Set(common.HeaderAccessControlExposeHeaders, strings.Join(c.ExposedHeaders, ","))
+		if c.AllowCredentials {
+			w.Header().Set(common.HeaderAccessControlAllowCredentials, strconv.FormatBool(c.AllowCredentials))
+		}
+		if c.MaxAge > 0 {
+			w.Header().Set(common.HeaderAccessControlMaxAge, strconv.Itoa(c.MaxAge))
+		}
+	}
+}
+
+// isOriginAllowed checks if the provided origin is allowed based on the configuration.
+func (c *CorsConfig) isOriginAllowed(origin string) bool {
+	for _, allowedOrigin := range c.AllowedOrigins {
+		if allowedOrigin == "*" || allowedOrigin == origin {
+			return true
+		}
+	}
+	return false
+}

corsx/cors_config.go

@@ -0,0 +1 @@
+package corsx

corsx/cors_model.go

@@ -0,0 +1,12 @@
+package corsx
+
+// CorsConfig represents the CORS (Cross-Origin Resource Sharing) configuration.
+type CorsConfig struct {
+	IsEnabled        bool     `json:"enabled" yaml:"enabled"`
+	AllowedOrigins   []string `json:"allowed_origins" yaml:"allowed-origins"`
+	AllowedMethods   []string `json:"allowed_methods" yaml:"allowed-methods"`
+	AllowedHeaders   []string `json:"allowed_headers" yaml:"allowed-headers"`
+	ExposedHeaders   []string `json:"exposed_headers" yaml:"exposed-headers"`
+	AllowCredentials bool     `json:"allow_credentials" yaml:"allow-credentials"`
+	MaxAge           int      `json:"max_age" binding:"gte=0" yaml:"max-age"`
+}