Open
Description
Hi,
I have a tartiflette server with aiohttp_cors, here is my main file:
import asyncio
import logging
import os
import sys
from typing import Optional, Union
import aiohttp_cors
from aiohttp import web
from tartiflette_aiohttp import register_graphql_handlers
from api.resolvers import consts
async def on_startup(app):
cors = aiohttp_cors.setup(
app,
defaults={
"https://domain.com": aiohttp_cors.ResourceOptions(
allow_credentials=True,
expose_headers="*",
allow_headers="*",
allow_methods=["POST", "OPTIONS"]
),
"https://domain2.com": aiohttp_cors.ResourceOptions(
allow_credentials=True,
expose_headers="*",
allow_headers="*",
allow_methods=["POST", "OPTIONS"]
),
"https://www.domain2.com": aiohttp_cors.ResourceOptions(
allow_credentials=True,
expose_headers="*",
allow_headers="*",
allow_methods=["POST", "OPTIONS"]
)
}
)
for route in list(app.router.routes()):
print(route)
cors.add(route)
# for resource in app.router.resources():
# cors.add(resource)
class Server:
def __init__(
self,
graphiql_debug: Optional[bool] = False,
) -> None:
self.graphiql_debug = graphiql_debug
def __call__(self) -> None:
loop = asyncio.get_event_loop()
app = web.Application()
register_graphql_handlers(
app,
engine_sdl=f"{os.path.dirname(os.path.abspath(__file__))}/sdl",
engine_modules=[
"api.resolvers.query",
"api.resolvers.mutation",
"api.sdl.scalars",
],
executor_http_endpoint="/graphql",
executor_http_methods=["POST"],
graphiql_enabled=self.graphiql_debug,
)
# https://gist.github.com/briggleman/0b422351aa7bcb797c71af887fa75c5f
# cors
app.on_startup.append(on_startup)
web.run_app(app, port=5000)
return 0
def main():
"""Graphql Server Entrypoint"""
log_file = "test.log"
logging.basicConfig(
filename=log_file,
level=logging.DEBUG,
format="%(relativeCreated)6d %(process)d %(message)s",
)
graphiql_debug = False if consts.IS_PROD else True
server = Server(graphiql_debug=graphiql_debug)
server()However, this is still letting through Postman / Curl requests. What am I missing here?
Metadata
Metadata
Assignees
Labels
No labels