MichaelJCole
commented
9 years ago Here's what I came up with:
1) Use Dokku 3.14+
2) create your app (api.server.com in this exampe):
ssh root@server.com
dokku apps:create api3) Add nginx SSL CORS template
The default templates are at: /root/dokku/plugins/nginx-vhosts/templates
We're configuring the external port, so we start with the nginx.ssl.conf template. Below is a gist of the template I use. Find more info at http://enable-cors.org/server_nginx.html
Editing templates:
- Escape $ or it will be replaced by bash
- " pairs will disappear. Use ' instead
cd /home/dokku/api
wget https://gist.githubusercontent.com/MichaelJCole/2d6d30c6d4e19495c425/raw/ddd1d66ab5d30a8bebc55c0604222d7bc99b8e63/nginx.conf.template
chown dokku:dokku nginx.conf.template5) Rebuild the apps nginx config.
Compile your new template, and check it's syntax.
dokku nginx:build-config api
nginx -tDeploying the code will rebuild the config, but not check its syntax (nginx -t)
6) Test it:
curl -I -H "Origin: https://www.server.com" https://api.server.com/r_u_upYou should see Access-Control-Allow-Origin: https://www.server.com in the output.
NOTE: This configuration doesn't allow you to configure CORS in your app itself. E.g. with a middleware like express-cors.
The configuration will enable CORS for any request from the same $VHOST.
This code in the template decides who CORS and who can't.
if (\$http_origin ~* (^https?://.*\.$VHOST$)) {
set \$cors corson;
}
if (\$http_origin ~* (^http://(localhost|127.0.0.1)(:[0-9]+)?$)) {
set \$cors corson;
}
josegonzalez
qrush
gwasky
Hi, I want to CORS every subdomain on my server (*.example.com)
What's the best way to do that in Dokku?
This came up as a replacement for vhosts: https://github.com/chrisfranklin/nginx-vhosts
Enable-cors.org has a guide that's pretty popular, but doesn't seem immediately compatible: http://enable-cors.org/server_nginx.html
Any suggestions?