chore: add specific Allow-Origins header

cdk/rocketnotes.go

@@ -90,6 +90,7 @@ func RocketnotesStack(scope constructs.Construct, id string, props *RocketnotesS
 	httpApi := awscdkapigatewayv2alpha.NewHttpApi(stack, jsii.String("MyHttpApi"), &awscdkapigatewayv2alpha.HttpApiProps{
 		ApiName: jsii.String("MyHttpApi"),
 		CorsPreflight: &awscdkapigatewayv2alpha.CorsPreflightOptions{
+			// TODO - change this to the actual allowed origins
 			AllowOrigins: jsii.Strings("*"),
 			AllowHeaders: jsii.Strings("*"),
 			AllowMethods: &[]awscdkapigatewayv2alpha.CorsHttpMethod{

lambda-handler/archive-zettel-handler/main.go

@@ -138,6 +138,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/delete-zettel-handler/main.go

@@ -62,6 +62,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/get-document-handler/main.go

@@ -87,6 +87,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

lambda-handler/get-document-tree-handler/main.go

@@ -84,6 +84,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

lambda-handler/get-shared-document-handler/main.go

@@ -89,6 +89,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

lambda-handler/get-user-config-handler/main.go

@@ -77,6 +77,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

lambda-handler/get-zettelkasten-handler/main.go

@@ -81,6 +81,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

lambda-handler/hello-world-handler/local.go

@@ -33,6 +33,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

lambda-handler/save-document-handler/local.go

@@ -76,6 +76,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/save-document-public-handler/main.go

@@ -100,6 +100,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/save-document-title-handler/main.go

@@ -104,6 +104,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/save-document-tree-handler/main.go

@@ -70,6 +70,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/save-user-config-handler/main.go

@@ -99,6 +99,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/save-vector-embeddings-handler/main.py

@@ -194,6 +194,7 @@ def handler(event, context):
         "statusCode": 200,
         "headers": {
             "Content-Type": "application/json",
+            # TODO - change this to the actual allowed origins
             "Access-Control-Allow-Origin": "*",
         },
         "body": json.dumps("Success"),

lambda-handler/save-zettel-handler/main.go

@@ -69,6 +69,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 	}, nil

lambda-handler/search-document-handler/main.go

@@ -94,6 +94,7 @@ func handleRequest(ctx context.Context, request events.APIGatewayProxyRequest) (
 	return events.APIGatewayProxyResponse{
 		StatusCode: 200,
 		Headers: map[string]string{
+			// TODO - change this to the actual allowed origins
 			"Access-Control-Allow-Origin": "*", // Required for CORS support to work locally
 		},
 		Body: string(b),

template.yaml

@@ -8,6 +8,7 @@ Globals:
     Cors:
       AllowMethods: "'GET,POST,DELETE,OPTIONS'"
       AllowHeaders: "'content-type'"
+			// TODO - change this to the actual allowed origins
       AllowOrigin: "'*'"
       AllowCredentials: "'*'"