From 1a55a855b5e448f2d27065e55ff8bf9900544db5 Mon Sep 17 00:00:00 2001
From: Bobby <bobbyskhs@gmail.com>
Date: Mon, 21 Mar 2022 01:49:17 -0400
Subject: try2: adding origins to cors

---
 server.js | 14 +++++---------
 1 file changed, 5 insertions(+), 9 deletions(-)

diff --git a/server.js b/server.js
index c0d7212..eb79ff0 100644
--- a/server.js
+++ b/server.js
@@ -35,16 +35,12 @@ app.use(
 app.use(
   cors({
     origin: function (origin, callback) {
-      // allow requests with no origin
-      // (like mobile apps or curl requests)
-      if (!origin) return callback(null, true);
-      if (allowedOrigins.indexOf(origin) === -1) {
-        var msg =
-          "The CORS policy for this site does not " +
-          "allow access from the specified Origin.";
-        return callback(new Error(msg), false);
+      // Block everything except the allowed origins
+      if (allowedOrigins.indexOf(origin) !== -1) {
+        callback(null, true);
+      } else {
+        callback(new Error("Not allowed by CORS"));
       }
-      return callback(null, true);
     },
   })
 );
-- 
cgit v1.2.3