|
|
@@ -15,11 +15,14 @@ class EnableCrossRequestMiddleware{
|
|
|
'http://test.com',//允许访问
|
|
|
];
|
|
|
// if (in_array($origin, $allow_origin)) {
|
|
|
- $response->header('Access-Control-Allow-Origin', '*');
|
|
|
- $response->header('Access-Control-Allow-Headers', 'Origin, Content-Type, Cookie, X-CSRF-TOKEN, Accept, Authorization, accessToken, X-XSRF-TOKEN');
|
|
|
- $response->header('Access-Control-Expose-Headers', 'Authorization, authenticated');
|
|
|
- $response->header('Access-Control-Allow-Methods', 'GET, POST, PATCH, PUT, OPTIONS');
|
|
|
- $response->header('Access-Control-Allow-Credentials', 'true');
|
|
|
+ if($response){
|
|
|
+ $response->header('Access-Control-Allow-Origin', '*');
|
|
|
+ $response->header('Access-Control-Allow-Headers', 'Origin, Content-Type, Cookie, X-CSRF-TOKEN, Accept, Authorization, accessToken, X-XSRF-TOKEN');
|
|
|
+ $response->header('Access-Control-Expose-Headers', 'Authorization, authenticated');
|
|
|
+ $response->header('Access-Control-Allow-Methods', 'GET, POST, PATCH, PUT, OPTIONS');
|
|
|
+ $response->header('Access-Control-Allow-Credentials', 'true');
|
|
|
+ }
|
|
|
+
|
|
|
// }
|
|
|
return $response;
|
|
|
}
|
APPLE