Skip to content

Commit

Permalink
Docs: Update HASURA_GRAPHQL_CORS_DOMAIN information
Browse files Browse the repository at this point in the history 
PR-URL: hasura/graphql-engine-mono#11122
GitOrigin-RevId: ea76ae99ca210571e886c7a2a762ea757171c498
  • Loading branch information
@robertjdominguez @hasura-bot
robertjdominguez authored and hasura-bot committed Jan 16, 2025
1 parent 431b0af commit 464fc36
Showing 1 changed file with 29 additions and 14 deletions.
43 changes: 29 additions & 14 deletions docs/docs/deployment/graphql-engine-flags/reference.mdx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -294,18 +294,33 @@ instead of the CDN, set the value to `/srv/console-assets`.

### CORS Domain

List of domains, **including scheme (http/https) and port**, to allow for CORS.
[Wildcard domains are allowed](/deployment/graphql-engine-flags/config-examples.mdx#configure-cors). **Setting an empty
value will block requests from all other domains**.

| | |
| ------------------- | --------------------------------------------------------------------------------------------- |
| **Flag** | `--cors-domain <DOMAINS>` |
| **Env var** | `HASURA_GRAPHQL_CORS_DOMAIN` |
| **Accepted values** | String (comma separated list of domains) |
| **Default** | **CE**, **Enterprise Edition**: `null` <br />**Cloud**: `*` |
| **Example** | "https://\*.foo.bar.com:8080, http://\*.localhost, http://localhost:3000, http://example.com" |
| **Supported in** | CE, Enterprise Edition, Cloud |
List of domains, **including scheme (http/https) and port**, to allow for CORS.
[Wildcard domains are allowed](/deployment/graphql-engine-flags/config-examples.mdx#configure-cors), but there are
important **limitations**:

1. **Wildcard for subdomains**:

- Wildcards (`*`) can indicate **only a single subdomain position** and must be the **starting subdomain**.
- Example: `http://*.foo.com` will match `http://app.foo.com` but **not** `http://www.app.foo.com`.
- Similarly, `http://www.*.foo.com` will **not** handle `http://www.app.foo.com`.
- To allow multiple subdomains, you need to explicitly list entries for each required subdomain.
- Example: Use `http://*.app.foo.com` and `http://*.app2.foo.com` for `http://bar.app.foo.com` and
`http://baz.app2.foo.com`.

2. **Wildcard for ports is not supported**:
- Ports must be specified explicitly.
- Example: Use `http://localhost:3000` instead of `http://localhost:*`.

**Setting an empty value will block requests from all other domains.**

| | |
| ------------------- | ------------------------------------------------------------------------------------------- |
| **Flag** | `--cors-domain <DOMAINS>` |
| **Env var** | `HASURA_GRAPHQL_CORS_DOMAIN` |
| **Accepted values** | String (comma separated list of domains) |
| **Default** | **CE**, **Enterprise Edition**: `null` <br />**Cloud**: `*` |
| **Example** | `https://*.foo.bar.com:8080, http://*.localhost, http://localhost:3000, http://example.com` |
| **Supported in** | CE, Enterprise Edition, Cloud |

:::info Note

Expand Down Expand Up @@ -1317,8 +1332,8 @@ Enable WebSocket `permessage-deflate` compression.

### Websocket Connection Init Timeout

Used to set the connection initialization timeout for GraphQL subscription protocols
(`graphql-transport-ws` and `subscriptions-transport-ws`).
Used to set the connection initialization timeout for GraphQL subscription protocols (`graphql-transport-ws` and
`subscriptions-transport-ws`).

| | |
| ------------------- | ---------------------------------------------------------- |
Expand Down

0 comments on commit 464fc36

Please sign in to comment.