Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
Denis Bukreev2017-04-21 00:11:45
Laravel
Denis Bukreev, 2017-04-21 00:11:45

What to do with cross-domain request between frontend part (reactJS) and backend part (laravel)?

So it goes.
I read some bullshit on google.
I found this solution on a foreign resource: 'header('Access-Control-Allow-Origin: *');and immediately remembered that I did something similar at the very beginning of my web career.
But where should I put this header in Laravel?
And how to properly restrict access to only one domain?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
DevMan, 2017-04-21
@denisbookreev

Access-Control-Allow-Origin can only go to a wildcard or a specific domain.
so for the whitelist of domains you need to feint:

SetEnvIf Origin "^http(s)?://(.+\.)?(domain\.org|domain2\.com)$" origin_is=$0 
Header always set Access-Control-Allow-Origin %{origin_is}e env=origin_is

Similar questions
4
4sadly2020-01-12 20:58:17
How to programmatically press a key in the active window? 2Reply
J
Jairman2020-01-15 20:33:35
How to turn off browser page refresh? 2Reply
L
ligisayan2017-10-04 17:54:07
Why can't I get into the wordpress admin panel when https is enabled? 1Reply
K
Konstantin B.2019-09-09 07:26:56
How in Laravel to prevent the receipt of a relation if they were not requested in the controller? 1Reply
S
sunzo2021-03-27 01:46:36
How is it possible to access the container service class in Laravel without registering this class in config/app.php (I saw it in the andriymiz/iiko-biz-api library)? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question