From b2f5192784010e467666ca59f1ddcfb35bf8f9a2 Mon Sep 17 00:00:00 2001
From: educoder <educoder@163.com>
Date: Tue, 13 May 2025 10:34:12 +0800
Subject: [PATCH] cors

---
 app/__init__.py | 20 ++++----------------
 1 file changed, 4 insertions(+), 16 deletions(-)

diff --git a/app/__init__.py b/app/__init__.py
index 0f3a85d..626e823 100644
--- a/app/__init__.py
+++ b/app/__init__.py
@@ -9,7 +9,9 @@ from .route.route import route_bp
 
 def create_app():
     app = Flask(__name__)
-    CORS(app, supports_credentials=True)
+    # CORS(app, supports_credentials=True)
+    CORS(app, resources={r"/*": {"origins": "*"}}, supports_credentials=True)
+
     # CORS(app, resources={r"/*": {"origins": "*", "methods": "GET,POST,PUT,DELETE,OPTIONS"}})  # 允许所有源访问所有端点
     # CORS(app, resources={r"/*": {"origins": ["http://111.8.143.97", "http://113.246.243.98"]}}, supports_credentials=True)
 
@@ -30,20 +32,6 @@ def create_app():
     log_file_path = '/data/ww/py_sys_monitor/info/access_log'
 
     def log_request_response(response):
-        # 获取请求的Origin头部
-        origin = request.headers.get('Origin')
-
-        # 设置Access-Control-Allow-Origin为请求的Origin
-        if origin:
-            response.headers.add('Access-Control-Allow-Origin', origin)
-
-        # 确保Access-Control-Allow-Credentials被设置为true
-        response.headers.add('Access-Control-Allow-Credentials', 'true')
-
-        # 添加其他需要的CORS头部
-        response.headers.add('Access-Control-Allow-Headers', 'Content-Type,Authorization')
-        response.headers.add('Access-Control-Allow-Methods', 'GET,PUT,POST,DELETE,OPTIONS')
-
 
         response_data = response.get_json(silent=True)
 
@@ -71,4 +59,4 @@ def create_app():
     
     app.after_request(log_request_response)
 
-    return app
\ No newline at end of file
+    return app