allow options requests

fitzyjoe · fitzyjoe · commit cfea5700b629 · 2018-06-08T23:56:59.000-04:00
I've started using a different subdomain for my front end and back end.  This has made my app perofrm CORS OPTIONS requests.  When the request is made, it does not pass the token!  I considered configuring NGINX to handle the OPTIONS requests, but I'd rather let my app handle it.
diff --git a/src/ngx_http_auth_jwt_module.c b/src/ngx_http_auth_jwt_module.c
@@ -147,6 +147,12 @@ static ngx_int_t ngx_http_auth_jwt_handler(ngx_http_request_t *r)
 	{
 		return NGX_DECLINED;
 	}
+
+	// pass through options requests without token authentication
+	if (r->method == NGX_HTTP_OPTIONS)
+	{
+		return NGX_DECLINED;
+	}
 	
 	jwtCookieValChrPtr = getJwt(r, jwtcf->auth_jwt_validation_type);
 	if (jwtCookieValChrPtr == NULL)

Original file line number	Diff line number	Diff line change
`@@ -147,6 +147,12 @@ static ngx_int_t ngx_http_auth_jwt_handler(ngx_http_request_t *r)`
`147`	`147`	`{`
`148`	`148`	`return NGX_DECLINED;`
`149`	`149`	`}`
	`150`	`+`
	`151`	`+ // pass through options requests without token authentication`
	`152`	`+ if (r->method == NGX_HTTP_OPTIONS)`
	`153`	`+ {`
	`154`	`+ return NGX_DECLINED;`
	`155`	`+ }`
`150`	`156`
`151`	`157`	`jwtCookieValChrPtr = getJwt(r, jwtcf->auth_jwt_validation_type);`
`152`	`158`	`if (jwtCookieValChrPtr == NULL)`