upaas

History

clawbot 02847eea92 fix: restrict CORS to configured origins (closes #40 ) - Add CORSOrigins config field (UPAAS_CORS_ORIGINS env var) - Default to same-origin only (no CORS headers when unconfigured) - When configured, allow specified origins with AllowCredentials: true - Add tests for CORS middleware behavior	2026-02-19 13:45:18 -08:00
..
config.go	fix: restrict CORS to configured origins (closes #40 )	2026-02-19 13:45:18 -08:00

clawbot 02847eea92 fix: restrict CORS to configured origins (closes #40 )

- Add CORSOrigins config field (UPAAS_CORS_ORIGINS env var)
- Default to same-origin only (no CORS headers when unconfigured)
- When configured, allow specified origins with AllowCredentials: true
- Add tests for CORS middleware behavior

2026-02-19 13:45:18 -08:00

config.go

fix: restrict CORS to configured origins (closes #40 )

2026-02-19 13:45:18 -08:00