David A. Windham
david
/
laravel
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Use config instead of middleware property

Barry vd. Heuvel 4 years ago
parent
777baff7d5
commit
860ec9f2a4
3 changed files with 67 additions and 8 deletions
Split View Show Diff Stats
  1. 1 7
      app/Http/Middleware/HandleCors.php
  2. 60 0
      config/cors.php
  3. 6 1
      routes/api.php

+ 1 - 7
app/Http/Middleware/HandleCors.php
View File 

@@ -6,11 +6,5 @@ use Fruitcake\Cors\HandleCors as Middleware;
 
 
 class HandleCors extends Middleware
 
 {
 
-    /**
 
-     * The paths to enable CORS on.
 
-     * Example: ['api/*']
 
-     *
 
-     * @var array
 
-     */
 
-    protected $paths = [];
 
+
 
 }

+ 60 - 0
config/cors.php
View File 

@@ -0,0 +1,60 @@
 
+<?php
 
+
 
+return [
 
+
 
+    /*
 
+    |--------------------------------------------------------------------------
 
+    | Laravel CORS Options
 
+    |--------------------------------------------------------------------------
 
+    |
 
+    | The allowed_methods and allowed_headers options are case-insensitive.
 
+    |
 
+    | You don't need to provide both allowed_origins and allowed_origins_patterns.
 
+    | If one of the strings passed matches, it is considered a valid origin.
 
+    |
 
+    | If array('*') is provided to allowed_methods, allowed_origins or allowed_headers
 
+    | all methods / origins / headers are allowed.
 
+    |
 
+    */
 
+
 
+    /*
 
+     * You can enable CORS for 1 or multiple paths.
 
+     * Example: ['api/*']
 
+     */
 
+    'paths' => [],
 
+
 
+    /*
 
+    * Matches the request method. `[*]` allows all methods.
 
+    */
 
+    'allowed_methods' => ['*'],
 
+
 
+    /*
 
+     * Matches the request origin. `[*]` allows all origins.
 
+     */
 
+    'allowed_origins' => ['*'],
 
+
 
+    /**
 
+     * Matches the request origin with, similar to `Request::is()`
 
+     */
 
+    'allowed_origins_patterns' => [],
 
+
 
+    /**
 
+     * Sets the Access-Control-Allow-Headers response header. `[*]` allows all headers.
 
+     */
 
+    'allowed_headers' => ['*'],
 
+
 
+    /**
 
+     * Sets the Access-Control-Expose-Headers response header.
 
+     */
 
+    'exposed_headers' => false,
 
+
 
+    /**
 
+     * Sets the Access-Control-Max-Age response header.
 
+     */
 
+    'max_age' => false,
 
+
 
+    /**
 
+     * Sets the Access-Control-Allow-Credentials header.
 
+     */
 
+    'supports_credentials' => false,
 
+];

+ 6 - 1
routes/api.php
View File 

@@ -13,7 +13,12 @@ use Illuminate\Support\Facades\Route;
 
 | is assigned the "api" middleware group. Enjoy building your API!
 
 |
 
 */
 
+Route::any('/test', function (Request $request) {
 
+    $a++;
 
+    return $request->user();
 
+});
 
+
 
 
-Route::middleware('auth:api')->get('/user', function (Request $request) {
 
+Route::middleware('auth:api')->any('/user', function (Request $request) {
 
     return $request->user();
 
 });