Skip to content
GitLab
Select Git revision
  • release/sprint-2019-08
  • master default
Find file BlameHistoryPermalink
CorsMiddleware.php 1001 bytes
1 
<?php namespace App\Http\Middleware;
2
3 
use Closure;
4
5 
class CorsMiddleware
6 
{
7 
    /**
8 
     * Handle an incoming request.
9 
     *
10 
     * @param  \Illuminate\Http\Request  $request
11 
     * @param  \Closure  $next
12 
     * @return mixed
13 
     */
14 
    public function handle($request, Closure $next)
15 
    {
16 
        $headers = [
17 
            'Access-Control-Allow-Origin'      => '*',
18 
            'Access-Control-Allow-Methods'     => 'POST, GET, OPTIONS, PUT, DELETE',
19 
            'Access-Control-Allow-Credentials' => 'true',
20 
            'Access-Control-Max-Age'           => '86400',
21 
            'Access-Control-Allow-Headers'     => 'Content-Type, Authorization, X-Requested-With'
22 
        ];
23
24 
        if ($request->isMethod('OPTIONS'))
25 
        {
26 
            return response()->json('{"method":"OPTIONS"}', 200, $headers);
27 
        }
28
29 
        $response = $next($request);
30 
        foreach($headers as $key => $value)
31 
        {
32 
            $response->header($key, $value);
33 
        }
34
35 
        return $response;
36 
    }
37 
}