fix: fix web component cors headers (#1251)

reapit · May 14, 2020 · 5033678 · 5033678
1 parent 318c19b
commit 5033678
Showing 1 changed file with 20 additions and 3 deletions.
diff --git a/packages/web-components/serverless.yml b/packages/web-components/serverless.yml
@@ -15,6 +15,14 @@ custom:
       noFrozenLockFile: false
     excludeFiles: src/**/*.test.ts
     keepOutputDirectory: true
+    allowedHeaders:
+      - Content-Type
+      - X-Amz-Date
+      - Authorization
+      - X-Api-Key
+      - X-Amz-Security-Token
+      - X-Amz-User-Agent
+      - reapit-customer
 
 provider:
   name: aws
@@ -57,7 +65,10 @@ functions:
       - http:
           path: properties
           method: get
-          cors: true
+          cors:
+            origin: '*'
+            headers: ${self:custom.allowedHeaders}
+            allowCredentials: false
           private: true
           request:
             parameters:
@@ -68,7 +79,10 @@ functions:
       - http:
           path: properties/{id}
           method: get
-          cors: true
+          cors:
+            origin: '*'
+            headers: ${self:custom.allowedHeaders}
+            allowCredentials: false
           private: true
           request:
             parameters:
@@ -79,7 +93,10 @@ functions:
       - http:
           path: propertyImages
           method: get
-          cors: true
+          cors:
+            origin: '*'
+            headers: ${self:custom.allowedHeaders}
+            allowCredentials: false
           private: true
           request:
             parameters: