@Resource
    protected TimeManager timeManager;

    /** System helper for various system-level operations. */
    @Resource
    protected SystemHelper systemHelper;

    /** Helper for managing access tokens and API authentication. */
    @Resource
    protected AccessTokenHelper accessTokenHelper;

    /** Helper for view-related operations and rendering. */
    @Resource
    protected ViewHelper viewHelper;

在此情況下，該清單必須包含 `http://localhost:8080`，` :8080` 的前端才能正確運作。

## 萬用字元 { #wildcards }

也可以將清單宣告為 `"*"`（「wildcard」萬用字元），表示全部都允許。

但那只會允許某些類型的通訊，凡是涉及憑證（credentials）的都會被排除：例如 Cookie、Authorization 標頭（像 Bearer Token 會用到的）等。

因此，為了讓一切正常運作，最好明確指定被允許的來源。

## 使用 `CORSMiddleware` { #use-corsmiddleware }

你可以在 **FastAPI** 應用程式中使用 `CORSMiddleware` 來設定：

* 匯入 `CORSMiddleware`。
* 建立允許的來源清單（字串）。

│   ├── main.py
│   └── test_main.py
```

이제 **FastAPI** 앱이 있는 `main.py` 파일에 몇 가지 다른 **경로 처리**가 추가된 경우를 생각해봅시다.

오류를 반환할 수 있는 `GET` 작업이 있습니다.

여러 다른 오류를 반환할 수 있는 `POST` 작업이 있습니다.

두 *경로 처리* 모두 `X-Token` 헤더를 요구합니다.

{* ../../docs_src/app_testing/app_b_an_py310/main.py *}

### 확장된 테스트 파일 { #extended-testing-file }

이제는 `test_main.py`를 확장된 테스트들로 수정할 수 있습니다:

* With this PR, kubectl and other RestClient's using the AuthProvider framework can make OIDC authenticated requests, and, if there is a refresh token present, the tokens will be refreshed as needed. ([#25270](https://github.com/kubernetes/kubernetes/pull/25270), [@bobbyrullo](https://github.com/bobbyrullo))

    @Size(max = 1000)
    public String oicClientSecret;

    /** OpenID Connect authorization server URL. */
    @Size(max = 1000)
    public String oicAuthServerUrl;

    /** OpenID Connect token server URL. */
    @Size(max = 1000)
    public String oicTokenServerUrl;

    /** OpenID Connect redirect URL. */
    @Size(max = 1000)
    public String oicRedirectUrl;

    /** OpenID Connect scope. */

    }

    @Test
    public void test_getOicTokenServerUrl_default() {
        final String url = authenticator.getOicTokenServerUrl();
        assertEquals("https://accounts.google.com/o/oauth2/token", url);
    }

    @Test
    public void test_getOicClientId_default() {
        final String clientId = authenticator.getOicClientId();
        assertEquals("", clientId);
    }

    @Test

Тож помістимо їх у власний модуль `dependencies` (`app/dependencies.py`).

Тепер використаємо просту залежність для читання користувацького заголовка `X-Token`:

{* ../../docs_src/bigger_applications/app_an_py310/dependencies.py hl[3,6:8] title["app/dependencies.py"] *}

/// tip | Порада

Ми використовуємо вигаданий заголовок, щоб спростити приклад.

- On finding at least one associated policy, MinIO generates temporary credentials for the user storing the list of groups in a cryptographically secure session token. The temporary access key, secret key and session token are returned to the user.
- The user can now use these credentials to make requests to the MinIO server.

     */
    public static VirtualHostHelper getVirtualHostHelper() {
        return getComponent(VIRTUAL_HOST_HELPER);
    }

    /**
     * Gets the access token helper component.
     * @return The access token helper.
     */
    public static AccessTokenHelper getAccessTokenHelper() {
        return getComponent(ACCESS_TOKEN_HELPER);
    }

    /**

  exit /b 1
)

rem Read the output file
if exist "%JVM_CONFIG_TEMP%" (
  if defined MAVEN_DEBUG_SCRIPT (
    echo [DEBUG] Temp file contents:
    type "%JVM_CONFIG_TEMP%"
  )
  for /f "usebackq tokens=*" %%i in ("%JVM_CONFIG_TEMP%") do set "JVM_CONFIG_MAVEN_OPTS=%%i"
  del "%JVM_CONFIG_TEMP%" 2>nul
)

if defined MAVEN_DEBUG_SCRIPT (
  echo [DEBUG] Final JVM_CONFIG_MAVEN_OPTS: %JVM_CONFIG_MAVEN_OPTS%
)