#84

Product support

Visit this product's website for support.

Categories

  • Developer Tools
  • Security
  • Utility

This plugin is based on https://github.com/barryvdh/laravel-cors. All configuration for the plugin can be done via the backend settings.

The following CORS headers are supported:

  • Access-Control-Allow-Origin
  • Access-Control-Allow-Headers
  • Access-Control-Allow-Methods
  • Access-Control-Allow-Credentials
  • Access-Control-Expose-Headers
  • Access-Control-Max-Age

Currently these headers are sent for every request. There is no per-route configuration possible at this time.

Setup

After installing the plugin visit the CORS settings page in your October CMS backend settings.

You can add * as an entry to Allowed origins, Allowed headers and Allowed methods to allow any kind of CORS request from everywhere.

It is advised to be more explicit about these settings. You can add values for each header via the repeater fields.

It is important to set these initial settings once for the plugin to work as expected!

  • Found the plugin not useful on 20 Nov, 2017

    Not always works as expected. I have deployed it to a server where it doesn't respond to OPTIONS at all (but it includes the CORS headers in response to other requests).

  • author

    Replied on 21 Nov, 2017

    Hi

    Thank you for your review. This sounds more like a problem with the server setup than with the plugin.

    All the plugin does is add the necessary response headers. If you don't receive any response to a OPTIONS request, it looks like the request never even reached your october codebase.

    Feel free to post any additional information on the plugin's github page. If it is a bug in the plugin we might fix it this way.

1.0.2

Fixed backend settings label (thanks to LukeTowers)

Feb 14, 2017

1.0.1

Initial release.

Dec 23, 2016