Laravel cors 'Access-Control-Allow-Origin' and 'Access-Control-Allow-Headers'

Question

I am new to Laravel.

I tried https://github.com/barryvdh/laravel-cors.

When I add

header('Access-Control-Allow-Origin: *');

in my public/index.php, it does not add the Content-Type in the response.

When I add

header('Access-Control-Allow-Origin: *');
header('Access-Control-Allow-Headers: Origin, Content-Type');

It does not add Access-Control-Allow-Origin.

I am very confused by all various solutions I find on internet. How exactly should I go about this?

thefallen · Accepted Answer · 2016-06-01T10:18:45.680

13

You can create a new middleware and add the headers to the response:

Run php artisan make:middleware ModifyHeadersMiddleware

Open the file ModifyHeadersMiddleware and modify the handle() method:

public function handle( $request, Closure $next )
{
    $response = $next( $request );
    $response->header( 'Access-Control-Allow-Origin', '*' );
    $response->header( 'Access-Control-Allow-Headers', 'Origin, Content-Type' );

    return $response;
}

Open app/Http/Kernel.php and in the protected $middleware array add the ModifyHeadersMiddleware class.

edited Jun 01 '16 at 10:18

answered Jun 01 '16 at 09:41

thefallen

9,496
2
34
49

It's giving 'Response for preflight has invalid HTTP status code 500' – Aarohi Kulkarni Jun 01 '16 at 10:12
I had a mistake in my code, can you copy the **handle** method and try again? – thefallen Jun 01 '16 at 10:19
Nope. It's saying 'No 'Access-Control-Allow-Origin' header is present on the requested resource.' now. – Aarohi Kulkarni Jun 01 '16 at 10:22
It did work after updating my php from 5.6 to 7. Thanks :) – Aarohi Kulkarni Jun 01 '16 at 10:53

Laravel cors 'Access-Control-Allow-Origin' and 'Access-Control-Allow-Headers'

1 Answers1

Linked