farcasclaudiu/Flowise
1
0
Fork 0
mirror of https://github.com/farcasclaudiu/Flowise.git synced 2026-06-23 17:00:30 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix allowed origins not working when they're all removed

Browse Source
This commit is contained in:
Ilango
2024-02-27 15:51:23 +05:30
parent 930bdd5c51
commit f477c74e0e
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/server/src/index.ts
+3 -1
View File
@@ -1227,7 +1227,9 @@ export class App {
logger.info(`[server]: Request originated from ${req.headers.origin}`)
if (chatflow.chatbotConfig) {
const parsedConfig = JSON.parse(chatflow.chatbotConfig)
if (parsedConfig.allowedOrigins && parsedConfig.allowedOrigins.length > 0) {
// check whether the first one is not empty. if it is empty that means the user set a value and then removed it.
const isValidAllowedOrigins = parsedConfig.allowedOrigins[0] !== ''
if (parsedConfig.allowedOrigins && parsedConfig.allowedOrigins.length > 0 && isValidAllowedOrigins) {
const originHeader = req.headers.origin as string
const origin = new URL(originHeader).host
isDomainAllowed = parsedConfig.allowedOrigins.includes(origin)