wood/aimodels-prices
1
0
Fork 0
mirror of https://github.com/woodchen-ink/aimodels-prices.git synced 2025-07-18 13:41:59 +08:00
Code Issues Packages Projects Releases Wiki Activity

Enhance CORS and fetch configuration with more secure and flexible settings

Browse Source
This commit is contained in:
wood chen 2025-02-08 02:21:49 +08:00
parent fa9ac6789d
commit 97e5605991
1 changed files with 10 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
main.ts
View File

@ -552,7 +552,14 @@ const html = `<!DOCTYPE html>
tbody.innerHTML = '<tr><td colspan="11" class="text-center">加载中...</td></tr>'; tbody.innerHTML = '<tr><td colspan="11" class="text-center">加载中...</td></tr>';
fetch(API_BASE_URL + '/api/prices') fetch(API_BASE_URL + '/api/prices', {
method: 'GET',
mode: 'cors',
credentials: 'include',
headers: {
'Accept': 'application/json'
}
})
.then(response => { .then(response => {
console.log('Response:', response); console.log('Response:', response);
if (!response.ok) { if (!response.ok) {
@ -861,9 +868,9 @@ function validateData(data: any): string | null {
// 修改处理函数 // 修改处理函数
async function handler(req: Request): Promise<Response> { async function handler(req: Request): Promise<Response> {
const headers = { const headers = {
"Access-Control-Allow-Origin": "*", "Access-Control-Allow-Origin": req.headers.get("origin") || "*",
"Access-Control-Allow-Methods": "GET, POST, OPTIONS, PUT, DELETE", "Access-Control-Allow-Methods": "GET, POST, OPTIONS, PUT, DELETE",
"Access-Control-Allow-Headers": "Content-Type, Cookie, Authorization", "Access-Control-Allow-Headers": "Content-Type, Cookie, Authorization, Accept",
"Access-Control-Allow-Credentials": "true", "Access-Control-Allow-Credentials": "true",
"Access-Control-Max-Age": "86400" "Access-Control-Max-Age": "86400"
}; };