🏠 HomeπŸ€– Githubβ˜• DonateπŸ’¬ Chat
Search…
v2.x
πŸ‘‹
Welcome
API
πŸ“¦
Fiber
πŸš€
App
🧠
Context
πŸ“‹
Constants
🧬
Middleware
BasicAuth
Cache
Compress
CORS
CSRF
Encrypt Cookie
EnvVar
ETag
Expvar
Favicon
FileSystem
Limiter
Logger
Monitor
Pprof
Proxy
Recover
RequestID
Session
Skip
Timeout
🌎
Client
Guide
πŸ”Œ
Routing
🎭
Grouping
πŸ“
Templates
πŸ›
Error Handling
πŸ”Ž
Validation
πŸͺ
Hooks
⚑
Make Fiber Faster
Extra
πŸ€”
FAQ
πŸ“Š
Benchmarks
🍳
Examples
Powered By GitBook
CORS
CORS middleware for Fiber that can be used to enable Cross-Origin Resource Sharing with various options.

Table of Contents

Signatures

func New(config ...Config) fiber.Handler

Examples

Import the middleware package that is part of the Fiber web framework
import (
"github.com/gofiber/fiber/v2"
"github.com/gofiber/fiber/v2/middleware/cors"
)
After you initiate your Fiber app, you can use the following possibilities:
// Default config
app.Use(cors.New())
​
// Or extend your config for customization
app.Use(cors.New(cors.Config{
AllowOrigins: "https://gofiber.io, https://gofiber.net",
AllowHeaders: "Origin, Content-Type, Accept",
}))

Config

// Config defines the config for middleware.
type Config struct {
// Next defines a function to skip this middleware when returned true.
//
// Optional. Default: nil
Next func(c *fiber.Ctx) bool
​
// AllowOrigin defines a list of origins that may access the resource.
//
// Optional. Default value "*"
AllowOrigins string
​
// AllowMethods defines a list of methods allowed when accessing the resource.
// This is used in response to a preflight request.
//
// Optional. Default value "GET,POST,HEAD,PUT,DELETE,PATCH"
AllowMethods string
​
// AllowHeaders defines a list of request headers that can be used when
// making the actual request. This is in response to a preflight request.
//
// Optional. Default value "".
AllowHeaders string
​
// AllowCredentials indicates whether or not the response to the request
// can be exposed when the credentials flag is true. When used as part of
// a response to a preflight request, this indicates whether or not the
// actual request can be made using credentials.
//
// Optional. Default value false.
AllowCredentials bool
​
// ExposeHeaders defines a whitelist headers that clients are allowed to
// access.
//
// Optional. Default value "".
ExposeHeaders string
​
// MaxAge indicates how long (in seconds) the results of a preflight request
// can be cached.
//
// Optional. Default value 0.
MaxAge int
}

Default Config

var ConfigDefault = Config{
Next: nil,
AllowOrigins: "*",
AllowMethods: "GET,POST,HEAD,PUT,DELETE,PATCH",
AllowHeaders: "",
AllowCredentials: false,
ExposeHeaders: "",
MaxAge: 0,
}
Previous
Compress
Next
CSRF
Last modified 2mo ago
Copy link
On this page
Table of Contents
Signatures
Examples
Config
Default Config