Comments (3)
mschae
commented on July 20, 2024
1
Doteki looks awesome but I think including another lib into this is overkill, sorry.
The {:system, value} approach would be ok for me but it does add overhead. I'll do a little benchmarking, given how fast Elixir does functions I'm pretty confident it will be negligible.
I still like the function-based approach: That function is only called once rather than on every call to plug. This has the benefit that when using ENV variables, we only do an ETS lookup (wich is comparably expensive) only once rather than with every call to plug.
I'm very performance-conscious because plugs have to be as fast as they possibly can. Hope that makes sense.
from cors_plug.
fpalluel
commented on July 20, 2024
Hello,
The {:system, "VALUE"} workaround has the advantage of being simple and wide spread. Moreover, some projects, such as https://github.com/botsunit/doteki greatly enhance it (handling of other types than binaries (integers, atoms, lists), ability to use functions as variables...)
from cors_plug.
fpalluel
commented on July 20, 2024
No problem !
Completely agree with the critical importance of plugs' performances.
Corsica makes use of functions too, to handle dynamic allowed origins...
from cors_plug.
Related Issues (20)
- Origin validation on OPTIONS HOT 3
- No CORS headers embedded in Plug.ErrorHandler code path HOT 2
- General CORS library HOT 3
- Options Requests without `Access-Control-Request-Method` should not be halted
- Unreachable code? HOT 2
- Support Plug 1.7 dependency HOT 1
- "Access-Control-Allow-Origin" is null when using regex for origin? HOT 3
- Configuration not working with Elixir 1.9 releases HOT 3
- Regex from string HOT 1
- FunctionClauseError when origin option is a list containing a regex HOT 1
- Regex isn't working on preflight request HOT 5
- A way to enable logging - difficult to configure HOT 3
- CORS Header empty HOT 2
- Looks like init function is called during the compile time HOT 1
- Access-Control-Allow-Credentials should not be included if set to false
- Headers cannot be set dynamically
- Minor security issue with origin checks
- Using config.ex does not work HOT 1
- default config of origin: * and credentials: true seems invalid?
- cors-rfc1918
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cors_plug.