diff options
| author | Chris Lu <chrislusf@users.noreply.github.com> | 2025-10-29 13:43:27 -0700 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2025-10-29 13:43:27 -0700 |
| commit | eaecd8328b6e76068381d86098647decda11d8c1 (patch) | |
| tree | 425a37699326bbd83a3621dcb04908bb18719717 /test | |
| parent | d4790cb8e60d61c7b5c7e19304356b30f7b1bdc4 (diff) | |
| download | seaweedfs-eaecd8328b6e76068381d86098647decda11d8c1.tar.xz seaweedfs-eaecd8328b6e76068381d86098647decda11d8c1.zip | |
S3: add fallback for CORS (#7404)
* add fallback for cors
* refactor
* expose aws headers
* add fallback to test
* refactor
* Only falls back to global config when there's explicitly no bucket-level config.
* fmt
* Update s3_cors_http_test.go
* refactoring
Diffstat (limited to 'test')
| -rw-r--r-- | test/s3/cors/s3_cors_http_test.go | 15 |
1 files changed, 9 insertions, 6 deletions
diff --git a/test/s3/cors/s3_cors_http_test.go b/test/s3/cors/s3_cors_http_test.go index 872831a2a..8244e2f03 100644 --- a/test/s3/cors/s3_cors_http_test.go +++ b/test/s3/cors/s3_cors_http_test.go @@ -398,13 +398,15 @@ func TestCORSHeaderMatching(t *testing.T) { } } -// TestCORSWithoutConfiguration tests CORS behavior when no configuration is set +// TestCORSWithoutConfiguration tests CORS behavior when no bucket-level configuration is set +// With the fallback feature, buckets without explicit CORS config will use the global CORS settings func TestCORSWithoutConfiguration(t *testing.T) { client := getS3Client(t) bucketName := createTestBucket(t, client) defer cleanupTestBucket(t, client, bucketName) - // Test preflight request without CORS configuration + // Test preflight request without bucket-level CORS configuration + // The global CORS fallback (default: "*") should be used httpClient := &http.Client{Timeout: 10 * time.Second} req, err := http.NewRequest("OPTIONS", fmt.Sprintf("%s/%s/test-object", getDefaultConfig().Endpoint, bucketName), nil) @@ -412,15 +414,16 @@ func TestCORSWithoutConfiguration(t *testing.T) { req.Header.Set("Origin", "https://example.com") req.Header.Set("Access-Control-Request-Method", "GET") + req.Header.Set("Access-Control-Request-Headers", "Content-Type") resp, err := httpClient.Do(req) require.NoError(t, err, "Should be able to send OPTIONS request") defer resp.Body.Close() - // Without CORS configuration, CORS headers should not be present - assert.Empty(t, resp.Header.Get("Access-Control-Allow-Origin"), "Should not have Allow-Origin header without CORS config") - assert.Empty(t, resp.Header.Get("Access-Control-Allow-Methods"), "Should not have Allow-Methods header without CORS config") - assert.Empty(t, resp.Header.Get("Access-Control-Allow-Headers"), "Should not have Allow-Headers header without CORS config") + // With fallback CORS (global default: "*"), CORS headers should be present + assert.Equal(t, "https://example.com", resp.Header.Get("Access-Control-Allow-Origin"), "Should have Allow-Origin header from global fallback") + assert.Contains(t, resp.Header.Get("Access-Control-Allow-Methods"), "GET", "Should have GET in Allow-Methods from global fallback") + assert.Contains(t, resp.Header.Get("Access-Control-Allow-Headers"), "Content-Type", "Should have requested headers in Allow-Headers from global fallback") } // TestCORSMethodMatching tests method matching |