صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
wanglu
/
crmeb
1
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
درخت: c3eea91f7f
شاخه‌ها تگ‌ها
crmeb
/
app
/
common
/
middleware
/
AllowOriginMiddleware.php

AllowOriginMiddleware.php 2.1 KB
تاريخچه خام

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758 
  1. <?php
    2. 

  2. // +----------------------------------------------------------------------
    3. 

  3. // | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
    4. 

  4. // +----------------------------------------------------------------------
    5. 

  5. // | Copyright (c) 2016~2022 https://www.crmeb.com All rights reserved.
    6. 

  6. // +----------------------------------------------------------------------
    7. 

  7. // | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
    8. 

  8. // +----------------------------------------------------------------------
    9. 

  9. // | Author: CRMEB Team <admin@crmeb.com>
    10. 

  10. // +----------------------------------------------------------------------
    11. 

  11. 

  12. 

  13. 

  14. namespace app\common\middleware;
    15. 

  15. 

  16. 

  17. use app\Request;
    18. 

  18. use think\exception\HttpResponseException;
    19. 

  19. use think\facade\Config;
    20. 

  20. use think\Response;
    21. 

  21. 

  22. /**
    23. 

  23.  * 跨域中间件
    24. 

  24.  * Class AllowOriginMiddleware
    25. 

  25.  * @package app\http\middleware
    26. 

  26.  */
    27. 

  27. class AllowOriginMiddleware extends BaseMiddleware
    28. 

  28. {
    29. 

  29.     /**
    30. 

  30.      * header头
    31. 

  31.      * @var array
    32. 

  32.      */
    33. 

  33.     protected $header = [
    34. 

  34.         'Access-Control-Allow-Origin' => '*',
    35. 

  35.         'Access-Control-Allow-Headers' => 'X-Token, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-Requested-With,Form-type,Referer,Connection,Content-Length,Host,Origin,Authorization,Authori-zation,Accept,Accept-Encoding',
    36. 

  36.         //,Host,Origin,Authorization,Authori-zation,Accept,Accept-Encoding
    37. 

  37.         //'Access-Control-Allow-Headers' => '*',
    38. 

  38.         'Access-Control-Allow-Methods' => 'GET,POST,PATCH,PUT,DELETE,OPTIONS',
    39. 

  39.         'Access-Control-Max-Age' => '1728000'
    40. 

  40.     ];
    41. 

  41. 

  42.     public function before(Request $request)
    43. 

  43.     {
    44. 

  44.         $cookieDomain = Config::get('cookie.domain', '');
    45. 

  45.         $origin = $request->header('origin');
    46. 

  46. 

  47.         if ($origin && $cookieDomain && strpos($origin, $cookieDomain))
    48. 

  48.             $this->header['Access-Control-Allow-Origin'] = $origin;
    49. 

  49.         if ($request->method(true) == 'OPTIONS') {
    50. 

  50.             throw new HttpResponseException(Response::create()->code(200)->header($this->header));
    51. 

  51.         }
    52. 

  52.     }
    53. 

  53. 

  54.     public function after(Response $response)
    55. 

  55.     {
    56. 

  56.         $response->header($this->header);
    57. 

  57.     }
    58. 

  58. }
    59.