perf: reduce bundle size by another 39 bytes

SukkaW · SukkaW · commit c57a875f2fcf · 2025-12-10T18:23:43.000+08:00
diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # cors-edge
 
-You are writing a very simple functions that runs on edge (either on Cloudflare Workers, Fastly Edge Compute, Vercel Edge Functions, etc.) consisting of less than 100 lines of code. You want to enable CORS (Cross-Origin Resource Sharing) for your endpoint but you do not want to pull in a heavy framework with middlewares just for that. This platform-agnostic package provides a simple way to add CORS support with minimal footprint (with only `976 bytes` added to your bundle).
+You are writing a very simple functions that runs on edge (either on Cloudflare Workers, Fastly Edge Compute, Vercel Edge Functions, etc.) consisting of less than 100 lines of code. You want to enable CORS (Cross-Origin Resource Sharing) for your endpoint but you do not want to pull in a heavy framework with middlewares just for that. This platform-agnostic package provides a simple way to add CORS support with minimal footprint (with only `937 bytes` added to your bundle).
 
 ## Installation
 
diff --git a/src/index.test.ts b/src/index.test.ts
@@ -61,7 +61,7 @@ describe('merge-headers', () => {
 
     expect(res.status).toBe(204);
     expect(res.headers.get('Access-Control-Allow-Methods')?.split(',')[0]).toBe('GET');
-    expect(res.headers.get('Access-Control-Allow-Headers')?.split(',')).toEqual([
+    expect(res.headers.get('Access-Control-Allow-Headers')?.split(',').map(h => h.trim())).toEqual([
       'X-PINGOTHER',
       'Content-Type'
     ]);
diff --git a/src/index.ts b/src/index.ts
@@ -50,7 +50,7 @@ export const createCors = ({
   let findAllowOrigin: (origin: string) => Promise<string | undefined | null> | string | undefined | null;
   if (typeof optsOrigin === 'string') {
     if (optsOrigin === '*') {
-      findAllowOrigin = () => '*';
+      findAllowOrigin = () => optsOrigin;
     } else {
       findAllowOrigin = (origin: string) => (optsOrigin === origin ? origin : null);
     }
@@ -106,16 +106,13 @@ export const createCors = ({
         setHeader(response, ACCESS_CONTROL_PREFIX + ALLOW_PREFIX + 'Methods', stringArrayJoinWithComma(allowMethods));
       }
 
-      let headers = optsAllowHeaders;
       const ACCESS_CONTROL_REQUEST_HEADERS = ACCESS_CONTROL_PREFIX + 'Request-' + HEADERS;
-      if (!headers?.length) {
-        const requestHeaders = getHeader(request, ACCESS_CONTROL_REQUEST_HEADERS);
-        if (requestHeaders) {
-          headers = requestHeaders.split(/\s*,\s*/);
-        }
-      }
-      if (headers?.length) {
-        setHeader(response, ACCESS_CONTROL_PREFIX + ALLOW_PREFIX + HEADERS, stringArrayJoinWithComma(headers));
+      const allowHeader = optsAllowHeaders?.length
+        ? stringArrayJoinWithComma(optsAllowHeaders)
+        : getHeader(request, ACCESS_CONTROL_REQUEST_HEADERS);
+
+      if (allowHeader) {
+        setHeader(response, ACCESS_CONTROL_PREFIX + ALLOW_PREFIX + HEADERS, allowHeader);
         response.headers.append(VARY, ACCESS_CONTROL_REQUEST_HEADERS);
       }
 
