How to fix CORS policies when building an Angular project in PHP?

Question

When I am building an Angular project with MySQL and PHP, my browser console log shows CORS header ‘access-control-allow-origin’ missing.

After I have installed the CORS extension to my browser and it works fine. But I want to control and give access in my PHP code. How can I write my code to solve this problem?

From where do you fetch the data. does it from a seperate backend — Nipun Tharuksha, Jul 07 '19 at 17:33
You need to allow access control from all origins , //at the very begining of your php script. header('Access-Control-Allow-Origin: *'); — BLACKMAMBA, Jul 07 '19 at 17:35

score 1 · Accepted Answer · answered Jul 07 '19 at 17:43

You can do as @Jithin said adding this to top of you php files .

header('Access-Control-Allow-Origin: *');

But please remember unless you specify specific origin by putting * disable CORS protection and let all origins to access you file.

So its better to specify the orgin as below

header('Access-Control-Allow-Origin: https://www.test.com')

score 1 · Answer 2 · answered Jul 07 '19 at 19:11

We had the same problem in our project, where we ended giving up on using the CORS extension for the browser, that wasnt safe and didnt always work.

Instead we used angular CLI's built-in proxy config to reroute all calls to a remote location.

We did this by

A) creating a proxy-config.json file (see https://stackoverflow.com/a/39715785 )

B) and then run project with angular CLI using the following command: ng serve --proxy-config proxy.conf.json

This way you trick you browser into "thinking" that you are accessing data from the same location, even though you aren't. And as a bonus you avoid using browser extensions that could be malicious.

How to fix CORS policies when building an Angular project in PHP?

2 Answers2