✨ updated

2024-11-14 01:58:20 +08:00
parent c95d5fc041
commit 3b8e3df27a
83 changed files with 172212 additions and 343 deletions
--- a/common/middleware/cors_middleware.go
+++ b/common/middleware/cors_middleware.go
@@ -1,12 +0,0 @@
-package middleware
-
-import "net/http"
-
-func CORSMiddleware() func(http.Header) {
-	return func(header http.Header) {
-		header.Set("Access-Control-Allow-Origin", "*")
-		header.Add("Access-Control-Allow-Headers", "UserHeader1, UserHeader2")
-		header.Set("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS, PATCH")
-		header.Set("Access-Control-Expose-Headers", "Content-Length, Content-Type")
-	}
-}
--- a/common/middleware/i18n_middleware.go
+++ b/common/middleware/i18n_middleware.go
@@ -1,16 +0,0 @@
-package middleware
-
-import (
-	"net/http"
-
-	"golang.org/x/text/language"
-
-	"schisandra-album-cloud-microservices/common/i18n"
-)
-
-func I18nMiddleware(next http.HandlerFunc) http.HandlerFunc {
-	return i18n.NewI18nMiddleware([]language.Tag{
-		language.English,
-		language.Chinese,
-	}, []string{"../../resources/language/active.en.toml", "../../resources/language/active.zh.toml"}).Handle(next)
-}
--- a/common/middleware/security_headers_middleware.go
+++ b/common/middleware/security_headers_middleware.go
@@ -1,13 +0,0 @@
-package middleware
-
-import "net/http"
-
-func SecurityHeadersMiddleware(w http.ResponseWriter, r *http.Request) {
-	r.Header.Set("X-Frame-Options", "DENY")
-	r.Header.Set("Content-Security-Policy", "default-src 'self'; connect-src *; font-src *; script-src-elem * 'unsafe-inline'; img-src * data:; style-src * 'unsafe-inline';")
-	r.Header.Set("X-XSS-Protection", "1; mode=block")
-	r.Header.Set("Strict-Transport-Security", "max-age=31536000; includeSubDomains; preload")
-	r.Header.Set("Referrer-Policy", "strict-origin")
-	r.Header.Set("X-Content-Type-Options", "nosniff")
-	r.Header.Set("Permissions-Policy", "geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()")
-}