Code to allow CORS only for valid domain patterns, 유효한 도메인 패턴만 CORS 허용하는 코드

cors_pattern.ts

import matcher from 'matcher'
import CORS from 'cors'

let corsOptions = {
    origin: (origin, callback) => {
        let allow = false
        for (let allowAccessDomain of settingsData.allowAccessDomains) { // [ "*.mydomain.com"]
            if (matcher.isMatch(origin, allowAccessDomain)) {
                allow = true
                break
            }
        }
        if (allow) {
            callback(null, true)
        } else {
            callback(new Error('Not allowed by CORS'))
        }
    },
}
// * Enable CORS
expressInstance.use(CORS(corsOptions))