Skip to content

Instantly share code, notes, and snippets.

@Bioblaze

Bioblaze/php

Created September 7, 2015 18:33
Show Gist options
  • Save Bioblaze/a9c662fbfaf277296d4c to your computer and use it in GitHub Desktop.
Save Bioblaze/a9c662fbfaf277296d4c to your computer and use it in GitHub Desktop.
Download ZIP
Allowing Access to API from another Domain, without knowing the Domain to Add.
Raw
php
// Allow from any origin
if (isset($_SERVER['HTTP_ORIGIN'])) {
//header("Access-Control-Allow-Origin: {$_SERVER['HTTP_ORIGIN']}");
header("Access-Control-Allow-Origin: *");
header('Access-Control-Allow-Credentials: true');
header('Access-Control-Max-Age: 86400'); // cache for 1 day
} else {
header("Access-Control-Allow-Origin: *");
header('Access-Control-Allow-Credentials: true');
header('Access-Control-Max-Age: 86400'); // cache for 1 day
}
// Access-Control headers are received during OPTIONS requests
if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
if (isset($_SERVER['HTTP_ACCESS_CONTROL_REQUEST_METHOD']))
header("Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS");
if (isset($_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']))
header("Access-Control-Allow-Headers: {$_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']}");
//header("Access-Control-Allow-Headers: X-Requested-With");
}
if("OPTIONS" == $_SERVER['REQUEST_METHOD']) { exit(0); }
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment