Home Explore Help
Register Sign In
alroyso
/
v2board
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 7907f455ce
Branches Tags
v2board
/
app
/
Http
/
Middleware
/
CORS.php

CORS.php 904 B
History Raw

123456789101112131415161718192021222324252627 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Middleware;
    4. 

  4. 

  5. use Closure;
    6. 

  6. 

  7. class CORS
    8. 

  8. {
    9. 

  9.     public function handle($request, Closure $next)
    10. 

  10.     {
    11. 

  11.         $origin = $request->header('origin');
    12. 

  12.         if (empty($origin)) {
    13. 

  13.             $referer = $request->header('referer');
    14. 

  14.             if (!empty($referer) && preg_match("/^((https|http):\/\/)?([^\/]+)/i", $referer, $matches)) {
    15. 

  15.                 $origin = $matches[0];
    16. 

  16.             }
    17. 

  17.         }
    18. 

  18.         $response = $next($request);
    19. 

  19.         $response->header('Access-Control-Allow-Origin', trim($origin, '/'));
    20. 

  20.         $response->header('Access-Control-Allow-Methods', 'GET,POST,OPTIONS,HEAD');
    21. 

  21.         $response->header('Access-Control-Allow-Headers', 'Origin,Content-Type,Accept,Authorization,X-Request-With');
    22. 

  22.         $response->header('Access-Control-Allow-Credentials', 'true');
    23. 

  23.         $response->header('Access-Control-Max-Age', 10080);
    24. 

  24. 

  25.         return $response;
    26. 

  26.     }
    27. 

  27. }
    28.