Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/lamualfa/cors_id

🔀 Panduan singkat mengatasi masalah CORS di berbagai macam aplikasi.
https://github.com/lamualfa/cors_id

api backend brave chrome cors edge firefox http javasript nodejs

Last synced: 2 months ago
JSON representation

🔀 Panduan singkat mengatasi masalah CORS di berbagai macam aplikasi.

Host: GitHub
URL: https://github.com/lamualfa/cors_id
Owner: lamualfa
Created: 2022-04-21T07:27:23.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2022-05-26T07:11:16.000Z (over 2 years ago)
Last Synced: 2023-03-06T00:11:46.547Z (almost 2 years ago)
Topics: api, backend, brave, chrome, cors, edge, firefox, http, javasript, nodejs
Homepage:
Size: 351 KB
Stars: 20
Watchers: 1
Forks: 2
Open Issues: 0
Metadata Files:
- Readme: readme.md

Awesome Lists containing this project

README

        # Panduan singkat mengatasi CORS di berbagai macam aplikasi

![CORS](./header.png)

Mayoritas [CORS](https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS) terjadi di browser dan disebabkan oleh _server/backend/api_ yang kamu gunakan di website tersebut. Untuk mengatasi nya, silahkan ikuti panduan singkat berikut.

![hr](./hr.png)

## FAQ

- Saya menggunakan _server/backend/api_ eksternal? **[Gunakan cara cepat](#cara-cepat)**.

- Saya tidak tahu teknologi apa yang _server/backend/api_ eksternal saya gunakan? **[Gunakan cara cepat](#cara-cepat)**.

- Teknologi yang saya gunakan belum ada? **[Buat issue](https://github.com/lamualfa/cors_id/issues/new)** atau **[buat pull request](https://github.com/lamualfa/cors_id/pulls)** jika berkenan.

![hr](./hr.png)

## Cara membaca error CORS

![image](./error.png)

Pada contoh diatas berarti server yang bermasalah adalah server dengan domain `http://localhost:5000`. Server dengan domain tersebut yang harus diperbaiki menggunakan solusi-solusi yang saya sediakan dibawah.

![hr](./hr.png)

## Informasi

Domain `http://domain-website-kamu.com` adalah domain dari server frontend yang kamu gunakan. Bukan domain dari _server/backend/api_ yang bermasalah tadi.

###### Development

Ganti `http://domain-website-kamu.com` dengan `http://localhost:[PORT_WEBSITE_KAMU]`.

###### Production

Ganti `http://domain-website-kamu.com` dengan domain dari website kamu.

![hr](./hr.png)

## Pintasan

###### Pilih berdasarkan teknologi yang _server/backend/api_ kamu gunakan.

- [Node.js](#nodejs)

  - [HTTP](#http)

  - [Express](#express)

  - [Fastify](#fastify)

  - [Next.js](#nextjs-api)

- [PHP](#php)

  - [Laravel](#laravel)

- [Go](#go)

  - [net/http](#nethttp)

  - [Gin](#gin)

  - [Chi](#chi)

  - [Fiber](#fiber)

  - [Echo](#echo)

- [Cara cepat](#cara-cepat)

  - [Ekstensi browser](#ekstensi-browser)

![hr](./hr.png)

## Node.js

### HTTP

```js

const http = require("http")

const port = 8080

http

  .createServer((req, res) => {

    const headers = {

      // Ganti domain ini

      "Access-Control-Allow-Origin": "http://domain-website-kamu.com",

      "Access-Control-Allow-Methods": "OPTIONS, POST, GET",

      "Access-Control-Max-Age": 2592000,

    }

    if (req.method === "OPTIONS") {

      res.writeHead(204, headers)

      res.end()

      return

    }

    // letakkan router kamu disini

    res.writeHead(405, headers)

    res.end(`${req.method} is not allowed for the request.`)

  })

  .listen(port)

```

### Express

https://expressjs.com/en/resources/middleware/cors.html

```js

var express = require("express")

var cors = require("cors")

var app = express()

var corsOptions = {

  // Ganti domain ini

  origin: "http://domain-website-kamu.com",

}

app.use(cors(corsOptions))

app.listen(80)

```

### Fastify

https://github.com/fastify/fastify-cors

```js

const fastify = require("fastify")()

fastify.register(require("fastify-cors"), {

  // Ganti domain ini

  origin: "http://domain-website-kamu.com",

})

```

### Next.js API

https://github.com/yonycalsin/nextjs-cors

```js

import NextCors from "nextjs-cors"

async function handler(req, res) {

  await NextCors(req, res, {

    // Ganti domain ini

    origin: "http://domain-website-kamu.com",

    methods: ["GET", "HEAD", "PUT", "PATCH", "POST", "DELETE"],

  })

  //  letakkan kode anda disini

}

```

![hr](./hr.png)

## PHP

### Laravel

#### Versi 8, 7, 6 dan kebawah

https://github.com/fruitcake/laravel-cors

##### Install `laravel-cors`

```bash

composer require fruitcake/laravel-cors

```

##### Tambahkan middleware

Buka file `app/Http/Kernel.php`, dan tambahkan middleware `\Fruitcake\Cors\HandleCors::class` di bagian paling atas `$middleware`.

###### contoh

```php

protected $middleware = [

  \Fruitcake\Cors\HandleCors::class,

    // ...

];

```

##### Buat file konfigurasi

```bash

php artisan vendor:publish --tag="cors"

```

##### Konfigurasi CORS

Buka file `config/cors.php` dan tambahkan konfigurasi berikut:

```php

'allowed_origins' => ['http://domain-website-kamu.com']

```

![hr](./hr.png)

## Go

### net/http

#### Tanpa third-party package

```go

func CORS(next http.HandlerFunc) http.HandlerFunc {

  return func(w http.ResponseWriter, r *http.Request) {

    w.Header().Add("Access-Control-Allow-Origin", "http://domain-website-kamu.com")

    w.Header().Add("Access-Control-Allow-Credentials", "true")

    w.Header().Add("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")

    if r.Method == "OPTIONS" {

        http.Error(w, "No Content", http.StatusNoContent)

        return

    }

    next(w, r)

  }

}

func main() {

  router := http.NewServeMux()

  // Pasang routing kamu disini

  http.ListenAndServe(":8080", CORS(router))

}

```

#### Dengan third-party package

Menggunakan [rs/cors](https://github.com/rs/cors)

```go

package main

import (

    "net/http"

    "github.com/rs/cors"

)

func main() {

    router := http.NewServeMux()

    // Pasang routing kamu disini

    corsMiddleware := cors.New(cors.Options{

        AllowedOrigins: []string{"http://domain-website-kamu.com"},

        AllowCredentials: true,

        AllowedMethods: []string{"GET", "POST", "OPTIONS", "PUT", "DELETE"},

        // Enable Debugging for testing, consider disabling in production

        Debug: true,

    })

    http.ListenAndServe(":8080", corsMiddleware(router))

}

```

### Gin

Dengan [gin-contrib/cors](https://github.com/gin-contrib/cors)

```go

package main

import (

  "time"

  "github.com/gin-contrib/cors"

  "github.com/gin-gonic/gin"

)

func main() {

  router := gin.Default()

  router.Use(cors.New(cors.Config{

    AllowOrigins:     []string{"http://domain-website-kamu.com"},

    AllowMethods:     []string{"GET", "POST", "OPTIONS", "PUT", "DELETE"},

    AllowCredentials: true,

    MaxAge: 12 * time.Hour,

  }))

  // Routing kamu disini

  router.Run()

}

```

### Chi

Dengan [go-chi/cors](https://github.com/go-chi/cors)

```go

package main

import (

  "net/http"

  "github.com/go-chi/chi/v5"

  "github.com/go-chi/cors"

)

func main() {

  r := chi.NewRouter()

  

  r.Use(cors.Handler(cors.Options{

    AllowedOrigins:   []string{"http://domain-website-kamu.com"},

    AllowedMethods:   []string{"GET", "POST", "OPTIONS", "PUT", "DELETE"},

    AllowCredentials: true,

    MaxAge:           2592000, 

  }))

  // Routing kamu disini

  http.ListenAndServe(":8080", r)

}

```

### Fiber

Dengan [fiber/middleware/cors](https://github.com/gofiber/fiber/tree/master/middleware/cors)

```go

package main

import (

	"github.com/gofiber/fiber/v2"

	"github.com/gofiber/fiber/v2/middleware/cors"

)

func main() {

	app := fiber.New()

	app.Use(cors.New(cors.Config{

		AllowOrigins:     "http://domain-website-kamu.com",

		AllowMethods:     "GET, POST, OPTIONS, PUT, DELETE",

		AllowCredentials: true,

		MaxAge:           2592000,

	}))

	// Routing kamu disini

	app.Listen(":8080")

}

```

### Echo

Dengan [echo/middleware](https://github.com/labstack/echo/blob/master/middleware/cors.go)

```go

package main

import (

	"github.com/labstack/echo/v4"

	"github.com/labstack/echo/v4/middleware"

)

func main() {

	e := echo.New()

	e.Use(middleware.CORSWithConfig(middleware.CORSConfig{

		AllowOrigins:     []string{"http://domain-website-kamu.com"},

		AllowMethods:     []string{"GET", "POST", "OPTIONS", "PUT", "DELETE"},

		AllowCredentials: true,

		MaxAge:           2592000,

	}))

	// Routing kamu disini

	e.Start(":8080")

}

```

## Cara cepat

###### Production

Jangan gunakan cara ini di mode production.

### Ekstensi browser

Install ekstensi berikut untuk menyelesaikan masalah CORS dengan instan.

##### Chrome atau Brave

https://chrome.google.com/webstore/detail/allow-cors-access-control/lhobafahddgcelffkeicbaginigeejlf

##### Firefox

https://addons.mozilla.org/id/firefox/addon/cors-everywhere/

##### Microsoft Edge

https://microsoftedge.microsoft.com/addons/detail/allow-cors-accesscontro/bhjepjpgngghppolkjdhckmnfphffdag

![hr](./hr.png)

#### Brought to you by [Teknologi Umum](https://github.com/teknologi-umum)