{"id":24622998,"url":"https://github.com/cdent/tiddlywebplugins.cors","last_synced_at":"2025-03-19T01:14:33.852Z","repository":{"id":3006266,"uuid":"4025089","full_name":"cdent/tiddlywebplugins.cors","owner":"cdent","description":"Experiment in handing CORS preflight for TiddlyWeb","archived":false,"fork":false,"pushed_at":"2014-03-26T23:56:04.000Z","size":160,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-02-01T03:28:47.005Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"http://tiddlyweb.com/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":"fduckart/uh-casdemo","license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cdent.png","metadata":{"files":{"readme":"README","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2012-04-14T13:48:45.000Z","updated_at":"2014-03-26T23:56:04.000Z","dependencies_parsed_at":"2022-08-20T10:20:43.503Z","dependency_job_id":null,"html_url":"https://github.com/cdent/tiddlywebplugins.cors","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cdent%2Ftiddlywebplugins.cors","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cdent%2Ftiddlywebplugins.cors/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cdent%2Ftiddlywebplugins.cors/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cdent%2Ftiddlywebplugins.cors/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cdent","download_url":"https://codeload.github.com/cdent/tiddlywebplugins.cors/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":244333022,"owners_count":20436123,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-01-25T03:13:54.551Z","updated_at":"2025-03-19T01:14:33.822Z","avatar_url":"https://github.com/cdent.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"A plugin for TiddlyWeb to support CORS pre-flight checks.\n\nThis is an experiment, with limited functionality. As test\ncases increase, functionality will increase.\n\nTo use add 'tiddlywebplugins.cors' to 'system_plugins' in \ntiddlywebconfig.py.\n\nThere are a few optional config settings:\n\nIf 'cors.match_origin' is True, then the value of the Origin\nheader will be the value of the Access-Control-Allow-Origin header,\non simple requests. On non-simple request, it always matches. If False\nthe value is '*' (on simple requests).\n\nIf 'cors.allow_creds' is True, then the\nAccess-Control-Allow-Credentials header will be sent with a value\nof 'true', otherwise it will not be sent.\n\nIf 'cors.exposed_headers' is set, its should be a list of strings\nrepresenting header names which are appended to the default\nAccess-Control-Expose-Headers: ETag. This same list is used to set\nthe default of Access-Control-Allow-Headers.\n\nIf 'cors.enable_non_simple' is True, preflight OPTIONS requests are\nhandled. This defaults to False to avoid accidental exposure.\n\nFor authenticated cross-domain PUTs of resources the following config\nappears to be required:\n\n    'cors.enable_non_simple': True,\n    'cors.allow_creds': True,\n    'cors.match_origin': True,\n\nThe match_origin setting is required for the OPTIONS preflight requests\nto be handled effectively.\n\nToDo:\n\n* Blacklist/Whitelist processing of Access-Control-Request-Headers.\n* Auditing with someone else to confirm that this stuff is \"correct\".\n* Refactoring of the two middlewares. There's a fair bit of overlap.\n  It could become just one that operates on both sides of the internal\n  application, but I find that can be confusing.\n\nCopyright 2012, Chris Dent \u003ccdent@peermore.com\u003e\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcdent%2Ftiddlywebplugins.cors","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcdent%2Ftiddlywebplugins.cors","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcdent%2Ftiddlywebplugins.cors/lists"}