[Tutorial Nginx] Enabling CORS for multiple Domains

ahmadRagheb · April 21, 2020, 3:46pm

hi
i was trying to add more than one domain in nginx , it works with one domain but multiple not
one domain :
add_header 'Access-Control-Allow-Origin' 'ww.xyz.com';
multiple format didn’ works for me … like
add_header 'Access-Control-Allow-Origin' 'ww.xyz.com, sub.xyz.com ';
add_header 'Access-Control-Allow-Origin' 'ww.xyz.com sub.xyz.com ';

the solution was :
Inside frappe bench folder write :
nano config/nginx.conf

write this code before the server block

  map $http_origin $origin_allowed {
     default 0;
     http://localhost:3000 1;
     https://sub.yourdomain.com 1;
 `#  ... add more allowed origins here`
    }

map $origin_allowed $origin {
  default "";
  1 $http_origin;
}

and inside the server block you want to open the cors in add this line

            if ($request_method = 'OPTIONS') {
                    add_header 'Access-Control-Allow-Origin' $origin;

as you can see $origin is set by the first code block . that way you can add as many sub domain and domains to call your server .

revant_one · April 21, 2020, 4:15pm

try with https://

add_header Access-Control-Allow-Origin "https://ww.xyz.com https://sub.xyz.com"

Can this feature be added to bench command?

bench setup nginx

github.com

frappe/bench/blob/develop/bench/config/templates/nginx.conf

{%- macro nginx_map(from_variable, to_variable, values, default) %}
map {{ from_variable }} {{ to_variable }} {
	{% for (from, to) in values.items() -%}
		{{ from }} {{ to }};
	{% endfor %}

	{%- if default -%}
		default {{ default }};
	{% endif %}
}
{%- endmacro %}

{%- macro server_block(bench_name, port, server_names, site_name, sites_path, ssl_certificate, ssl_certificate_key) %}
server {
	{% if ssl_certificate and ssl_certificate_key %}
	listen {{ port }} ssl;
	listen [::]:{{ port }} ssl;
	{% else %}
	listen {{ port }};
	listen [::]:{{ port }};

This file has been truncated. show original

sunhoww · June 28, 2020, 10:47am

Just throwing it out there. I had this multitenant setup serving a few sites and wanted to enable cors just for a few sites.

Let’s say I had a couple sites - site1.com and site2.com (assuming that the site name is the same as the host where it’s reachable at). And I wanted to enable cors from https://some.web.app just for site1.com. I ended up using the following map -

map $http_origin:$host $origin {
        default "";
        https://some.web.app:site1.com $http_origin;
}

Another thing was that I had to

map_hash_bucket_size 128;

But that could be just me. nginx docs says that map_hash_bucket_size “depends on the processor’s cache line size”.

The rest to set add_header could be the same as the one in the OP.

Hevert_Chacon · March 25, 2021, 10:17pm

this way worked smoth for me… thanks…