我对使用Lumen 8的CORS有问题。
我创建了CorsMiddleware.php,如下所示=>
<?php
namespace AppHttpMiddleware;
use Closure;
use IlluminateHttpResponse;
class CorsMiddleware
{
/**
* Handle an incoming request.
*
* @param IlluminateHttpRequest $request
* @param Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
$headers = [
// 'Access-Control-Allow-Origin' => getenv('ACCESS_CONTROL_ALLOW_ORIGIN'),
// 'Access-Control-Allow-Methods' => getenv('ACCESS_CONTROL_ALLOW_METHODS'),
'Access-Control-Allow-Origin' => '*',
'Access-Control-Allow-Methods' => 'POST, GET, OPTIONS, PUT, DELETE',
'Access-Control-Allow-Credentials' => 'true',
'Access-Control-Max-Age' => '86400',
'Access-Control-Allow-Headers' => 'Content-Type, Authorization, X-Requested-With'
];
if ($request->isMethod('OPTIONS')) {
return response()->json('{"method":"OPTIONS"}', 200, $headers);
}
$response = $next($request);
foreach ($headers as $key => $value) {
$response->header($key, $value);
}
return $response;
}
}
在我的bootstrap/app.php 中添加了它
$app->routeMiddleware([
AppHttpMiddlewareCorsMiddleware::class,
'auth' => AppHttpMiddlewareAuthenticate::class,
]);
我甚至添加了.htaccess
Header set Access-Control-Allow-Origin "*"
Header set Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS"
Header set Access-Control-Allow-Credentials "true"
但和其他一样没用…
奇怪的是,邮差可以进入我的路线!?但我的本地应用程序不能。。。
你们有主意吗?
对于Cors中间件,我认为您应该将其添加到$app->中间件([](。这是我们以前在项目中所做的。
$app->middleware([
AppHttpMiddlewareCorsMiddleware::class
]);
$app->middleware([]}
是一个全局中间件,它确实非常有效,尤其是在处理HTTP请求时。
如果您想将中间件分配给特定的路由,您应该首先在bootstrap/app.php文件对$app->routeMiddleware()
的调用中为中间件分配一个短密钥。大多数情况下,'auth' => AppHttpMiddlewareAuthenticate::class,
大部分时间都在这里,因为你处理的是路线。因此,进行身份验证以获得保护。
#参考:https://lumen.laravel.com/docs/5.4/middleware