2023-07-12 03:47:08 -04:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2018-04-12 08:45:17 -04:00
|
|
|
# Be sure to restart your server when you modify this file.
|
|
|
|
|
|
|
|
# Avoid CORS issues when API is called from the frontend app.
|
2023-10-25 09:56:09 -04:00
|
|
|
# Handle Cross-Origin Resource Sharing (CORS) in order to accept cross-origin Ajax requests.
|
2018-04-12 08:45:17 -04:00
|
|
|
|
|
|
|
# Read more: https://github.com/cyu/rack-cors
|
|
|
|
|
|
|
|
Rails.application.config.middleware.insert_before 0, Rack::Cors do
|
|
|
|
allow do
|
|
|
|
origins '*'
|
|
|
|
|
2023-09-28 09:48:47 -04:00
|
|
|
with_options headers: :any, credentials: false do
|
|
|
|
with_options methods: [:get] do
|
|
|
|
resource '/.well-known/*'
|
2023-10-16 07:39:25 -04:00
|
|
|
resource '/nodeinfo/*'
|
2023-09-28 09:48:47 -04:00
|
|
|
resource '/@:username'
|
|
|
|
resource '/users/:username'
|
|
|
|
end
|
|
|
|
resource '/api/*',
|
|
|
|
expose: %w(Link X-RateLimit-Reset X-RateLimit-Limit X-RateLimit-Remaining X-Request-Id),
|
|
|
|
methods: %i(post put delete get patch options)
|
|
|
|
resource '/oauth/token', methods: [:post]
|
2024-09-04 06:46:28 -04:00
|
|
|
resource '/oauth/revoke', methods: [:post]
|
2024-10-30 10:38:10 -04:00
|
|
|
resource '/oauth/userinfo', methods: [:get, :post]
|
2023-09-28 09:48:47 -04:00
|
|
|
end
|
2018-04-12 08:45:17 -04:00
|
|
|
end
|
|
|
|
end
|