-
Notifications
You must be signed in to change notification settings - Fork 134
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
84ff359
commit 365a46c
Showing
489 changed files
with
9,049 additions
and
4,529 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,105 @@ | ||
<?php | ||
|
||
namespace Config; | ||
|
||
use CodeIgniter\Config\BaseConfig; | ||
|
||
/** | ||
* Cross-Origin Resource Sharing (CORS) Configuration | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS | ||
*/ | ||
class Cors extends BaseConfig | ||
{ | ||
/** | ||
* The default CORS configuration. | ||
* | ||
* @var array{ | ||
* allowedOrigins: list<string>, | ||
* allowedOriginsPatterns: list<string>, | ||
* supportsCredentials: bool, | ||
* allowedHeaders: list<string>, | ||
* exposedHeaders: list<string>, | ||
* allowedMethods: list<string>, | ||
* maxAge: int, | ||
* } | ||
*/ | ||
public array $default = [ | ||
/** | ||
* Origins for the `Access-Control-Allow-Origin` header. | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin | ||
* | ||
* E.g.: | ||
* - ['http://localhost:8080'] | ||
* - ['https://www.example.com'] | ||
*/ | ||
'allowedOrigins' => [], | ||
|
||
/** | ||
* Origin regex patterns for the `Access-Control-Allow-Origin` header. | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin | ||
* | ||
* NOTE: A pattern specified here is part of a regular expression. It will | ||
* be actually `#\A<pattern>\z#`. | ||
* | ||
* E.g.: | ||
* - ['https://\w+\.example\.com'] | ||
*/ | ||
'allowedOriginsPatterns' => [], | ||
|
||
/** | ||
* Weather to send the `Access-Control-Allow-Credentials` header. | ||
* | ||
* The Access-Control-Allow-Credentials response header tells browsers whether | ||
* the server allows cross-origin HTTP requests to include credentials. | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials | ||
*/ | ||
'supportsCredentials' => false, | ||
|
||
/** | ||
* Set headers to allow. | ||
* | ||
* The Access-Control-Allow-Headers response header is used in response to | ||
* a preflight request which includes the Access-Control-Request-Headers to | ||
* indicate which HTTP headers can be used during the actual request. | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers | ||
*/ | ||
'allowedHeaders' => [], | ||
|
||
/** | ||
* Set headers to expose. | ||
* | ||
* The Access-Control-Expose-Headers response header allows a server to | ||
* indicate which response headers should be made available to scripts running | ||
* in the browser, in response to a cross-origin request. | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Expose-Headers | ||
*/ | ||
'exposedHeaders' => [], | ||
|
||
/** | ||
* Set methods to allow. | ||
* | ||
* The Access-Control-Allow-Methods response header specifies one or more | ||
* methods allowed when accessing a resource in response to a preflight | ||
* request. | ||
* | ||
* E.g.: | ||
* - ['GET', 'POST', 'PUT', 'DELETE'] | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Methods | ||
*/ | ||
'allowedMethods' => [], | ||
|
||
/** | ||
* Set how many seconds the results of a preflight request can be cached. | ||
* | ||
* @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Max-Age | ||
*/ | ||
'maxAge' => 7200, | ||
]; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.