Fix use defaults middleware configs

2025-08-09 09:14:49 +00:00 · 2017-11-27 12:11:30 +01:00 · 2017-11-27 12:11:30 +01:00 · ed6367eeb4
commit ed6367eeb4
parent 5e2748f81f
3 changed files with 15 additions and 9 deletions
--- a/packages/strapi/lib/middlewares/cors/index.js
+++ b/packages/strapi/lib/middlewares/cors/index.js
@ -15,17 +15,19 @@ module.exports = strapi => {
     */

    initialize: function(cb) {
+      const defaults = require('./defaults.json');
+
      strapi.app.use(
        async (ctx, next) => {
          if (ctx.request.admin) {
            return strapi.koaMiddlewares.kcors({
              origin: '*',
-              exposeHeaders: this.defaults.cors.expose,
-              maxAge: this.defaults.cors.maxAge,
-              credentials: this.defaults.cors.credentials,
-              allowMethods: this.defaults.cors.methods,
-              allowHeaders: this.defaults.cors.headers,
-              keepHeadersOnError: this.defaults.cors.keepHeadersOnError
+              exposeHeaders: defaults.cors.expose,
+              maxAge: defaults.cors.maxAge,
+              credentials: defaults.cors.credentials,
+              allowMethods: defaults.cors.methods,
+              allowHeaders: defaults.cors.headers,
+              keepHeadersOnError: defaults.cors.keepHeadersOnError
            })(ctx, next);
          } else if (strapi.config.currentEnvironment.security.cors.enabled) {
            return strapi.koaMiddlewares.kcors({
--- a/packages/strapi/lib/middlewares/xframe/index.js
+++ b/packages/strapi/lib/middlewares/xframe/index.js
@ -15,13 +15,15 @@ module.exports = strapi => {
     */

    initialize: function(cb) {
+      const defaults = require('./defaults.json');
+      
      strapi.app.use(
        async (ctx, next) => {
          if (ctx.request.admin) {
            return await strapi.koaMiddlewares.convert(
              strapi.koaMiddlewares.lusca.xframe({
-                enabled: this.defaults.xframe.enabled,
-                value: this.defaults.xframe.value
+                enabled: defaults.xframe.enabled,
+                value: defaults.xframe.value
              })
            )(ctx, next);
          } else if (strapi.config.currentEnvironment.security.xframe.enabled) {
--- a/packages/strapi/lib/middlewares/xss/index.js
+++ b/packages/strapi/lib/middlewares/xss/index.js
@ -15,13 +15,15 @@ module.exports = strapi => {
     */

    initialize: function(cb) {
+      const defaults = require('./defaults.json');
+
      strapi.app.use(
        async (ctx, next) => {
          if (ctx.request.admin) {
            return await strapi.koaMiddlewares.convert(
              strapi.koaMiddlewares.lusca.xssProtection({
                enabled: true,
-                mode: this.defaults.xss.mode
+                mode: defaults.xss.mode
              })
            )(ctx, next);
          } else if (strapi.config.currentEnvironment.security.xss.enabled) {