Reputation: 1518
Custom response headers with Strongloop framework
Whenever my Chrome browser makes a request to the REST api server a browser error appears in console saying Refused to get unsafe header "Content-Range". Now I've managed to fix this in my vanilla express server (i.e. without StrongLoop) in two distinct ways:
- manually setting response headers
res.header("Access-Control-Expose-Headers")OR - using the node-cors
allowedHeadersandexposedHeadersoptions (see https://github.com/TroyGoode/node-cors#configuration-options)
Now how can I achieve this in my StrongLoop instance? Official SL documentation only talks about cors.origin and cors.credentials, see http://docs.strongloop.com/display/public/LB/config.json.
Have I missed anything?
UPDATE with the best solution:
// config.json
"cors": {
"origin": true,
"credentials": true,
"allowedHeaders": ["X-Requested-With"],
"exposedHeaders": ["Content-Range"]
},
Upvotes: 2
Views: 1886
Answers (2)
Reputation: 1536
We use node-cors behind the scene. The cors options configured in config.json will be passed to node-cors. Can you try that?
Upvotes: 2
Reputation: 2781
You can make your own middleware handler like https://groups.google.com/forum/#!searchin/loopbackjs/response$20header/loopbackjs/y7vB4RFDS0E/Xyb-J2oYQakJ
Or you can add a remote hook and manipulate the response header manually via the context object. See http://docs.strongloop.com/display/LB/Remote+hooks
Upvotes: 1
Related Questions
- automatically add header to every response
- Is there a way to allow CORS to process custom headers on preflight response
- Read custom headers from HTTP response in Elm
- Get response custom headers for cross-origin request
- Angular 4 HTTP custom headers
- Angular2: how to get custom response headers (CORS issue)
- Configure SOAP header with Strongloop Loopback SOAP connector
- No custom headers when setFullResponse(true)
- CORS Custom Headers
- StrongLoop Loopback : How to customize HTTP response code and header