01.Create a laravel project
1 |
composer create-project laravel/laravel myapp |
02.Create middleware
1 |
php artisan make:middleware Cors |
03.Cors file
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
public function handle($request, Closure $next) { // return $next($request); // ALLOW OPTIONS METHOD $headers = [ 'Access-Control-Allow-Origin' => '*', 'Access-Control-Allow-Methods' => 'POST, GET, OPTIONS, PUT, DELETE', 'Access-Control-Allow-Headers' => 'Content-Type, X-Auth-Token, Origin, Authorization' ]; if ($request->getMethod() == "OPTIONS") { // The client-side application can set only headers allowed in Access-Control-Allow-Headers return \Response::make('OK', 200, $headers); } $response = $next($request); foreach ($headers as $key => $value) $response->header($key, $value); return $response; } |
04.In kernel.php
add in both web
1 |
\App\Http\Middleware\Cors::class, // Place Cors middleware here |
and in routemiddleware
1 |
'cors' => \App\Http\Middleware\Cors::class, // <<< add this line |