Update Cors function documentation to match behaviour (#289)

Co-authored-by: Rob Ede <robjtede@icloud.com>
2024-11-23 15:51:06 +01:00 · 2022-09-21 19:15:54 +10:00 · 2022-09-21 19:15:54 +10:00 · d98ebf2bdf
commit d98ebf2bdf
parent 1561bda822
1 changed files with 5 additions and 5 deletions
--- a/actix-cors/src/builder.rs
+++ b/actix-cors/src/builder.rs
@ -123,10 +123,10 @@ impl Cors {

    /// Add an origin that is allowed to make requests.
    ///
-    /// By default, requests from all origins are accepted by CORS logic. This method allows to
-    /// specify a finite set of origins to verify the value of the `Origin` request header.
+    /// This method allows specifying a finite set of origins to verify the value of the `Origin`
+    /// request header. These are `origin-or-null` types in the [Fetch Standard].
    ///
-    /// These are `origin-or-null` types in the [Fetch Standard].
+    /// By default, no origins are accepted.
    ///
    /// When this list is set, the client's `Origin` request header will be checked in a
    /// case-sensitive manner.
@ -211,7 +211,7 @@ impl Cors {
    /// These will be sent in the `Access-Control-Allow-Methods` response header as specified in
    /// the [Fetch Standard CORS protocol].
    ///
-    /// Defaults to `[GET, HEAD, POST, OPTIONS, PUT, PATCH, DELETE]`
+    /// This defaults to an empty set.
    ///
    /// [Fetch Standard CORS protocol]: https://fetch.spec.whatwg.org/#http-cors-protocol
    pub fn allowed_methods<U, M>(mut self, methods: U) -> Cors
@ -283,7 +283,7 @@ impl Cors {
    /// will be echoed back in the `Access-Control-Allow-Headers` header as specified in
    /// the [Fetch Standard CORS protocol].
    ///
-    /// Defaults to `All`.
+    /// This defaults to an empty set.
    ///
    /// [Fetch Standard CORS protocol]: https://fetch.spec.whatwg.org/#http-cors-protocol
    pub fn allowed_headers<U, H>(mut self, headers: U) -> Cors