CORS checking cannot be disabled, let's add a config entry to don't/do load cors middleware based on that.

@aminlatifi
We have it already

@aminlatifi We have it already

impact-graph/src/server/bootstrap.ts

Lines 200 to 230 in 89181df

	const whitelistHostnames: string[] = (
	config.get('HOSTNAME_WHITELIST') as string
	).split(',');
	const corsOptions = {
	origin(origin, callback) {
	if (!origin) {
	// allow requests with no origin (like mobile apps, Curl, ...)
	return callback(null, true);
	}
	// removing http:// , https://, and :port
	const formattedOrigin = origin
	.replace('https://', '')
	.replace('http://', '')
	.split(':')[0];
	for (const allowedOrigin of whitelistHostnames) {
	// passing all subdomains of whitelist hosts, for instance x.vercel.app, x.giveth.io,...
	if (
	formattedOrigin === allowedOrigin ||
	formattedOrigin.endsWith(`.${allowedOrigin}`)
	) {
	return callback(null, true);
	}
	}
	logger.error('CORS error', { whitelistHostnames, origin });
	callback(new Error('Not allowed by CORS'));
	},
	};
	const bodyParserJson = bodyParser.json({

I meant this line

It's already merge to the staging. Devops can test it

@mhmdksh let's close this one if you confirm it's done.

Yes, I can confirm that it's working. We can close this issue now. Thanks @aminlatifi