I’ve begun focusing on the security aspects of microservices environments, with a particular emphasis on CORS (Cross-Origin Resource Sharing). CORS has become an essential topic, and there are already numerous modules and articles available that explain how to set it up properly.
However, one question persists: How can we test whether the setup is truly secure, and what tools are available to thoroughly assess the environment? To ensure the successful delivery of future projects, whether in PHP or JavaScript, I’ve started researching this area.
One tool I’ve begun exploring is Burp Suite, which seems promising so far.
Today, I also created a simple GitHub repository that demonstrates how to set up a Node.js and React environment with a secure CORS configuration: GitHub Repository.