1.0.0 • Published 2 years ago
nextjs-edge-cors v1.0.0
Enable CORS for Next.js Edge
The easiest way to enable CORS is in your Next config, per the docs:
// next.config.mjs
export const headers = () => {
return [
{
source: "/api/cors/:path*",
headers: [
{ key: "Access-Control-Allow-Credentials", value: "true" },
{ key: "Access-Control-Allow-Origin", value: "*" },
{ key: "Access-Control-Allow-Methods", value: "GET,OPTIONS,PATCH,DELETE,POST,PUT" },
{ key: "Access-Control-Allow-Headers", value: "X-CSRF-Token, X-Requested-With, Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, X-Api-Version" },
]
}
];
};Alternatively, you can use the withCors() Middleware wrapper:
// src/middleware.ts
import { withCors } from "nextjs-edge-cors"
export const middleware = withCors();
export const config = {
matcher: ["/api/cors/:path*"]
};Advanced
You can wrap existing Middleware or pass CORS options to withCors():
import { withCors } from "nextjs-edge-cors"
export const middleware = withCors(
otherMiddleware,
{
/**
* Only allow CORS requests from Google.com. Comma separate for multiple
* values.
*/
origin: "https://www.google.com"
}
);
export const config = {
matcher: ["/api/cors/:path*"]
};