fix(cors): Patch 3 follow-up bugs from CWE-942 CORS hardening (#1323)

praisonai-triage-agent[bot] · Copilot · MervinPraison · web-flow · commit dd41a3c426ca · 2026-04-09T07:00:47.000+01:00
* security: Fix CORS Configuration Vulnerabilities (CWE-942) - Replace wildcard origins - Replace allow_origins=['*'] with secure environment-based configurations - Update browser server to use BROWSER_CORS_ORIGINS env var with localhost defaults - Update jobs server to use JOBS_CORS_ORIGINS env var with localhost defaults - Update example API to use API_CORS_ORIGINS env var with localhost defaults - Remove wildcard defaults from ServerConfig, GatewayConfig, and AppConfig - Add secure localhost defaults to MCP server transport - Update tests and documentation to reflect secure defaults - Restrict CORS methods and headers to essential ones only Fixes #1321 - Addresses 3 instances of CWE-942 vulnerabilities 🤖 Generated with [Claude Code](https://claude.ai/code) Co-authored-by: praisonai-triage-agent[bot] <praisonai-triage-agent[bot]@users.noreply.github.com> * fix: Address 3 CORS bugs found in review - chrome-extension regex, http_stream headers, server.py methods/headers Agent-Logs-Url: https://github.com/MervinPraison/PraisonAI/sessions/b76a2075-da18-4ad5-82e8-79fc09457529 Co-authored-by: MervinPraison <454862+MervinPraison@users.noreply.github.com> * security: Fix remaining CORS vulnerabilities (CWE-942) - Add environment-based CORS defaults (empty for production) - Validate env vars to reject wildcard origins (*) - Add missing Idempotency-Key header to jobs CORS - Unify WebSocket and HTTP CORS origin validation - Make http_stream transport environment-aware Fixes all critical security issues identified by code reviewers: - Production no longer allows localhost by default - Environment variables cannot bypass security with * - WebSocket uses same origin validation as CORS middleware - Jobs API properly supports Idempotency-Key header 🤖 Generated with [Claude Code](https://claude.ai/code) Co-authored-by: Mervin Praison <MervinPraison@users.noreply.github.com> --------- Co-authored-by: praisonai-triage-agent[bot] <272766704+praisonai-triage-agent[bot]@users.noreply.github.com> Co-authored-by: praisonai-triage-agent[bot] <praisonai-triage-agent[bot]@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MervinPraison <454862+MervinPraison@users.noreply.github.com> Co-authored-by: Mervin Praison <MervinPraison@users.noreply.github.com>
diff --git a/examples/python/api/secondary-market-research-api.py b/examples/python/api/secondary-market-research-api.py
@@ -43,14 +43,34 @@
     redoc_url="/redoc"
 )
 
-# Add CORS middleware
-app.add_middleware(
-    CORSMiddleware,
-    allow_origins=["*"],
-    allow_credentials=True,
-    allow_methods=["*"],
-    allow_headers=["*"],
-)
+# Add CORS middleware with secure configuration
+cors_origins = os.getenv("API_CORS_ORIGINS", "").split(",")
+cors_origins = [origin.strip() for origin in cors_origins if origin.strip() and origin.strip() != "*"]
+
+# Default secure origins if none specified
+if not cors_origins:
+    # Secure defaults for different environments
+    if os.getenv("ENVIRONMENT") == "production":
+        # In production, require explicit configuration
+        cors_origins = []
+    else:
+        # Development defaults - restrict to local origins
+        cors_origins = [
+            "http://localhost:3000",   # Development frontend
+            "http://localhost:8000",   # Local development
+            "http://127.0.0.1:3000",   # Local development
+            "http://127.0.0.1:8000",   # Local development
+        ]
+
+# Only add CORS middleware if origins are specified
+if cors_origins:
+    app.add_middleware(
+        CORSMiddleware,
+        allow_origins=cors_origins,
+        allow_credentials=True,
+        allow_methods=["GET", "POST", "PUT", "DELETE", "OPTIONS"],
+        allow_headers=["Authorization", "Content-Type", "Origin", "Accept"],
+    )
 
 # Create directories for storing reports
 REPORTS_DIR = Path("generated_reports")
diff --git a/src/praisonai-agents/praisonaiagents/app/config.py b/src/praisonai-agents/praisonaiagents/app/config.py
@@ -21,7 +21,7 @@ class AgentAppConfig:
         host: Host address to bind to (default: "0.0.0.0")
         port: Port number to listen on (default: 8000)
         reload: Enable auto-reload for development (default: False)
-        cors_origins: List of allowed CORS origins (default: ["*"])
+        cors_origins: List of allowed CORS origins (default: [])
         api_prefix: API route prefix (default: "/api")
         docs_url: URL for API documentation (default: "/docs")
         openapi_url: URL for OpenAPI schema (default: "/openapi.json")
@@ -44,7 +44,7 @@ class AgentAppConfig:
     host: str = "0.0.0.0"
     port: int = 8000
     reload: bool = False
-    cors_origins: List[str] = field(default_factory=lambda: ["*"])
+    cors_origins: List[str] = field(default_factory=lambda: [])
     api_prefix: str = "/api"
     docs_url: str = "/docs"
     openapi_url: str = "/openapi.json"
diff --git a/src/praisonai-agents/praisonaiagents/gateway/config.py b/src/praisonai-agents/praisonaiagents/gateway/config.py
@@ -57,7 +57,7 @@ class GatewayConfig:
     
     host: str = "127.0.0.1"
     port: int = 8765
-    cors_origins: List[str] = field(default_factory=lambda: ["*"])
+    cors_origins: List[str] = field(default_factory=lambda: [])
     auth_token: Optional[str] = None
     max_connections: int = 1000
     max_sessions_per_agent: int = 0  # 0 = unlimited
@@ -204,7 +204,7 @@ def from_dict(cls, data: Dict[str, Any]) -> "MultiChannelGatewayConfig":
         gateway_config = GatewayConfig(
             host=gw_data.get("host", "127.0.0.1"),
             port=gw_data.get("port", 8765),
-            cors_origins=gw_data.get("cors_origins", ["*"]),
+            cors_origins=gw_data.get("cors_origins", []),
             auth_token=gw_data.get("auth_token"),
             max_connections=gw_data.get("max_connections", 1000),
         )
diff --git a/src/praisonai-agents/praisonaiagents/server/server.py b/src/praisonai-agents/praisonaiagents/server/server.py
@@ -27,7 +27,7 @@ class ServerConfig:
     
     host: str = DEFAULT_HOST
     port: int = DEFAULT_PORT
-    cors_origins: List[str] = field(default_factory=lambda: ["*"])
+    cors_origins: List[str] = field(default_factory=lambda: [])
     auth_token: Optional[str] = None
     max_connections: int = 100
     
@@ -200,8 +200,8 @@ async def info(request):
         app = CORSMiddleware(
             app,
             allow_origins=self.config.cors_origins,
-            allow_methods=["*"],
-            allow_headers=["*"],
+            allow_methods=["GET", "POST", "OPTIONS"],
+            allow_headers=["Authorization", "Content-Type", "Origin", "Accept"],
         )
         
         return app
diff --git a/src/praisonai-agents/tests/unit/server/test_server.py b/src/praisonai-agents/tests/unit/server/test_server.py
@@ -22,7 +22,7 @@ def test_config_defaults(self):
         
         assert config.host == "127.0.0.1"
         assert config.port == 8765
-        assert config.cors_origins == ["*"]
+        assert config.cors_origins == []
         assert config.auth_token is None
     
     def test_config_custom(self):
diff --git a/src/praisonai-agents/tests/unit/test_gateway_config.py b/src/praisonai-agents/tests/unit/test_gateway_config.py
@@ -53,7 +53,7 @@ def test_gateway_config_defaults(self):
         config = GatewayConfig()
         assert config.host == "127.0.0.1"
         assert config.port == 8765
-        assert config.cors_origins == ["*"]
+        assert config.cors_origins == []
         assert config.auth_token is None
         assert config.max_connections == 1000
         assert config.max_sessions_per_agent == 0
diff --git a/src/praisonai/praisonai/browser/server.py b/src/praisonai/praisonai/browser/server.py
@@ -7,6 +7,7 @@
 import logging
 import signal
 import sys
+import os
 from typing import Dict, Optional, Set
 from dataclasses import dataclass
 
@@ -82,13 +83,37 @@ def _get_app(self):
             version="1.0.0",
         )
         
-        # Enable CORS for extension
+        # Configure CORS origins based on environment
+        cors_origins = os.getenv("BROWSER_CORS_ORIGINS", "").split(",")
+        cors_origins = [origin.strip() for origin in cors_origins if origin.strip() and origin.strip() != "*"]
+        
+        # Default secure origins if none specified
+        if not cors_origins:
+            # Environment-specific defaults for security
+            if os.getenv("ENVIRONMENT") == "production":
+                # In production, require explicit configuration
+                cors_origins = []
+            else:
+                # Development defaults - restrict to local origins
+                cors_origins = [
+                    "http://localhost:3000",  # Development frontend
+                    "http://localhost:8000",  # Local development
+                    "http://127.0.0.1:3000",  # Local development
+                    "http://127.0.0.1:8000",  # Local development
+                ]
+        
+        # Enable CORS for extension with secure origins.
+        # allow_origin_regex enables Chrome extension support since extension IDs
+        # (chrome-extension://<32-char-id>) cannot be listed as exact strings
+        # and the glob pattern chrome-extension://* is NOT supported by CORSMiddleware.
+        # Set BROWSER_CORS_ORIGINS to restrict to a specific extension ID.
         app.add_middleware(
             CORSMiddleware,
-            allow_origins=["*"],
+            allow_origins=cors_origins,
+            allow_origin_regex=r"chrome-extension://[a-z0-9]{32}",
             allow_credentials=True,
-            allow_methods=["*"],
-            allow_headers=["*"],
+            allow_methods=["GET", "POST", "PUT", "DELETE", "OPTIONS"],
+            allow_headers=["Authorization", "Content-Type", "Origin", "Accept"],
         )
         
         @app.get("/health")
@@ -113,20 +138,32 @@ async def _handle_connection(self, websocket):
         import time
         import uuid
         import os
+        import re
+        
+        # Use same CORS origins configuration for WebSocket validation
+        cors_origins = os.getenv("BROWSER_CORS_ORIGINS", "").split(",")
+        cors_origins = [origin.strip() for origin in cors_origins if origin.strip() and origin.strip() != "*"]
+        
+        if not cors_origins:
+            if os.getenv("ENVIRONMENT") == "production":
+                cors_origins = []
+            else:
+                cors_origins = [
+                    "http://localhost:3000", "http://localhost:8000",
+                    "http://127.0.0.1:3000", "http://127.0.0.1:8000"
+                ]
         
         origin = websocket.headers.get("origin")
-        allowed_origins = os.environ.get("ALLOWED_ORIGINS", "").split(",")
         if origin:
             import urllib.parse
             parsed_origin = urllib.parse.urlparse(origin)
             is_allowed = False
             
-            if parsed_origin.scheme in ("http", "https") and parsed_origin.hostname in ("localhost", "127.0.0.1"):
-                is_allowed = True
-            elif parsed_origin.scheme == "chrome-extension":
+            # Check exact origin matches
+            if origin in cors_origins:
                 is_allowed = True
-                
-            if any(origin == allowed.strip() for allowed in allowed_origins if allowed.strip()):
+            # Check chrome extension regex pattern (same as CORS middleware)
+            elif parsed_origin.scheme == "chrome-extension" and re.match(r"chrome-extension://[a-z0-9]{32}", origin):
                 is_allowed = True
             
             if not is_allowed:
diff --git a/src/praisonai/praisonai/jobs/server.py b/src/praisonai/praisonai/jobs/server.py
@@ -86,15 +86,36 @@ def create_app(
         lifespan=lifespan
     )
     
-    # Add CORS middleware
-    origins = cors_origins or ["*"]
-    app.add_middleware(
-        CORSMiddleware,
-        allow_origins=origins,
-        allow_credentials=True,
-        allow_methods=["*"],
-        allow_headers=["*"],
-    )
+    # Add CORS middleware with secure defaults
+    if cors_origins is None:
+        # Default secure origins based on environment
+        default_origins = os.getenv("JOBS_CORS_ORIGINS", "").split(",")
+        default_origins = [origin.strip() for origin in default_origins if origin.strip() and origin.strip() != "*"]
+        
+        if not default_origins:
+            # Secure defaults for different environments
+            if os.getenv("ENVIRONMENT") == "production":
+                origins = []  # No origins allowed in production without explicit config
+            else:
+                origins = [
+                    "http://localhost:3000",   # Development frontend
+                    "http://localhost:8000",   # Local development
+                    "http://127.0.0.1:3000",   # Local development
+                    "http://127.0.0.1:8000",   # Local development
+                ]
+        else:
+            origins = default_origins
+    else:
+        origins = cors_origins
+    
+    if origins:  # Only add CORS middleware if origins are specified
+        app.add_middleware(
+            CORSMiddleware,
+            allow_origins=origins,
+            allow_credentials=True,
+            allow_methods=["GET", "POST", "PUT", "DELETE", "OPTIONS"],
+            allow_headers=["Authorization", "Content-Type", "Origin", "Accept", "Idempotency-Key"],
+        )
     
     # Add jobs router
     jobs_router = create_router(get_store(), get_executor())
diff --git a/src/praisonai/praisonai/mcp_server/transports/http_stream.py b/src/praisonai/praisonai/mcp_server/transports/http_stream.py
@@ -71,7 +71,23 @@ def __init__(
         self.host = host
         self.port = port
         self.endpoint = endpoint
-        self.cors_origins = cors_origins or ["*"]
+        # Environment-aware CORS origins for security
+        if cors_origins is None:
+            import os
+            if os.getenv("ENVIRONMENT") == "production":
+                # In production, require explicit configuration
+                self.cors_origins = []
+            else:
+                # Development defaults - restrict to local origins
+                self.cors_origins = [
+                    "http://localhost:3000",
+                    "http://127.0.0.1:3000", 
+                    "http://localhost:8000",
+                    "http://127.0.0.1:8000"
+                ]
+        else:
+            # Validate provided origins to reject wildcards
+            self.cors_origins = [origin for origin in cors_origins if origin != "*"]
         self.api_key = api_key
         self.session_ttl = session_ttl
         self.allow_client_termination = allow_client_termination
@@ -352,7 +368,7 @@ async def root(request: Request) -> Response:
                 CORSMiddleware,
                 allow_origins=self.cors_origins,
                 allow_methods=["GET", "POST", "DELETE", "OPTIONS"],
-                allow_headers=["*"],
+                allow_headers=["Authorization", "Content-Type", "Origin", "Accept", "Mcp-Session-Id", "Last-Event-Id"],
             ),
         ]
         
diff --git a/src/praisonai/praisonai/recipe/serve.py b/src/praisonai/praisonai/recipe/serve.py
@@ -31,7 +31,7 @@
   - my-recipe
   - another-recipe
 preload: true
-cors_origins: "*"
+cors_origins: "http://localhost:3000,http://localhost:8000"
 rate_limit: 100           # requests per minute (0 = disabled)
 max_request_size: 10485760  # 10MB default
 enable_metrics: false     # Enable /metrics endpoint
