Summary
The cloud backend currently uses wildcard CORS (Access-Control-Allow-Origin: *), which allows any website to make API requests. This should be replaced with a configurable origin allowlist.
Problem
In cloud/backend/base/hono-server.ts, the CORS configuration allows all origins. While this simplifies development, it means any website can make authenticated requests to the Fireproof Cloud API, which is a security concern for production deployments.
Proposed Solution
- Create CORS middleware at
cloud/backend/middleware/cors.ts
- Implement origin allowlist validation with environment variable configuration
- Add development mode that allows localhost origins
- Replace wildcard CORS at
cloud/backend/base/hono-server.ts:165
- (Optional) Add origin registration API and management UI
Expected Outcomes
- Registered domains can make API requests
- Unregistered domains receive CORS rejection
- Development mode allows localhost origins
- Environment variable for allowed origins
- Tests verify CORS behavior
Summary
The cloud backend currently uses wildcard CORS (
Access-Control-Allow-Origin: *), which allows any website to make API requests. This should be replaced with a configurable origin allowlist.Problem
In
cloud/backend/base/hono-server.ts, the CORS configuration allows all origins. While this simplifies development, it means any website can make authenticated requests to the Fireproof Cloud API, which is a security concern for production deployments.Proposed Solution
cloud/backend/middleware/cors.tscloud/backend/base/hono-server.ts:165Expected Outcomes