Domů Procházet Nápověda
Registrovat se Přihlásit se
Kirin
/
yatang
1
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: c144ab078d
Větve Značky
yatang
/
app
/
common
/
middleware
/
AllowOriginMiddleware.php

AllowOriginMiddleware.php 2.2 KB
Historie Surový

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. <?php
    2. 

  2. // +----------------------------------------------------------------------
    3. 

  3. // | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
    4. 

  4. // +----------------------------------------------------------------------
    5. 

  5. // | Copyright (c) 2016~2020 https://www.crmeb.com All rights reserved.
    6. 

  6. // +----------------------------------------------------------------------
    7. 

  7. // | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
    8. 

  8. // +----------------------------------------------------------------------
    9. 

  9. // | Author: CRMEB Team <admin@crmeb.com>
    10. 

  10. // +----------------------------------------------------------------------
    11. 

  11. 

  12. 

  13. namespace app\common\middleware;
    14. 

  14. 

  15. 

  16. use app\Request;
    17. 

  17. use think\exception\HttpResponseException;
    18. 

  18. use think\facade\Config;
    19. 

  19. use think\Response;
    20. 

  20. 

  21. /**
    22. 

  22.  * 跨域中间件
    23. 

  23.  * Class AllowOriginMiddleware
    24. 

  24.  * @package app\http\middleware
    25. 

  25.  */
    26. 

  26. class AllowOriginMiddleware extends BaseMiddleware
    27. 

  27. {
    28. 

  28.     /**
    29. 

  29.      * header头
    30. 

  30.      * @var array
    31. 

  31.      */
    32. 

  32.     protected $header = [
    33. 

  33.         'Access-Control-Allow-Origin' => '*',
    34. 

  34.         'Access-Control-Allow-Headers' => 'LatLon, X-Token, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-Requested-With,Form-type,Referer,Connection,Content-Length,Host,Origin,Authorization,Authori-zation,Accept,Accept-Encoding',//,Host,Origin,Authorization,Authori-zation,Accept,Accept-Encoding
    35. 

  35.         //'Access-Control-Allow-Headers' => '*',
    36. 

  36.         'Access-Control-Allow-Methods' => 'GET,POST,PATCH,PUT,DELETE,OPTIONS,DELETE',
    37. 

  37.         'Access-Control-Max-Age' => '1728000'
    38. 

  38.     ];
    39. 

  39. 

  40.     public function before(Request $request)
    41. 

  41.     {
    42. 

  42.         $cookieDomain = Config::get('cookie.domain', '');
    43. 

  43.         $origin = $request->header('origin');
    44. 

  44.         $lonlat = trim($request->header('LatLon'));
    45. 

  45.         $request->macro('lonlat', function () use ($lonlat) {
    46. 

  46.             return $lonlat;
    47. 

  47.         });
    48. 

  48.         if ($origin && $cookieDomain && strpos($origin, $cookieDomain))
    49. 

  49.             $this->header['Access-Control-Allow-Origin'] = $origin;
    50. 

  50.         if ($request->method(true) == 'OPTIONS') {
    51. 

  51.             throw new HttpResponseException(Response::create()->code(200)->header($this->header));
    52. 

  52.         }
    53. 

  53.     }
    54. 

  54. 

  55.     public function after(Response $response)
    56. 

  56.     {
    57. 

  57.         $response->header($this->header);
    58. 

  58.     }
    59. 

  59. }
    60.