7ab410d2e5
Change-Id: I49e40d24d75f5a380423c28f7590e47cfd36390d Signed-off-by: smarcet <smarcet@gmail.com>
65 lines
1.5 KiB
PHP
65 lines
1.5 KiB
PHP
<?php
|
|
|
|
return [
|
|
|
|
/*
|
|
* A cors profile determines which origins, methods, headers are allowed for
|
|
* a given requests. The `DefaultProfile` reads its configuration from this
|
|
* config file.
|
|
*
|
|
* You can easily create your own cors profile.
|
|
* More info: https://github.com/spatie/laravel-cors/#creating-your-own-cors-profile
|
|
*/
|
|
'cors_profile' => Spatie\Cors\CorsProfile\DefaultProfile::class,
|
|
|
|
/*
|
|
* This configuration is used by `DefaultProfile`.
|
|
*/
|
|
'default_profile' => [
|
|
|
|
'allow_credentials' => false,
|
|
|
|
'allow_origins' => [
|
|
'*',
|
|
],
|
|
|
|
'allow_methods' => [
|
|
'POST',
|
|
'GET',
|
|
'OPTIONS',
|
|
'PUT',
|
|
'PATCH',
|
|
'DELETE',
|
|
],
|
|
|
|
'allow_headers' => [
|
|
'Accept',
|
|
'Content-Type',
|
|
'X-Auth-Token',
|
|
'Origin',
|
|
'Authorization',
|
|
'X-Requested-With',
|
|
'Cache-Control',
|
|
],
|
|
|
|
'expose_headers' => [
|
|
'Cache-Control',
|
|
'Content-Language',
|
|
'Content-Type',
|
|
'Expires',
|
|
'Last-Modified',
|
|
'Pragma',
|
|
],
|
|
|
|
'forbidden_response' => [
|
|
'message' => 'Forbidden (cors).',
|
|
'status' => 403,
|
|
],
|
|
|
|
/*
|
|
* Preflight request will respond with value for the max age header.
|
|
*/
|
|
'max_age' => 60 * 60 * 24,
|
|
],
|
|
];
|