Access-Control-Allow-Origin Snipet

5/23/2017 - 5:54 PM

Access-Control-Allow-Origin Snipet

<?php

// tells the CDN that the content 'Vary' depending on 'Origin' request header
header('Vary: Origin', true);

// allowed origins
$allowed_http_origins = array(
	'http://example.com',
	'http://www.example.com',
	'http://127.0.0.1',
	'http://localhost',
);

// get Origin sendend by the client if any
$http_origin = isset($_SERVER['HTTP_ORIGIN']) ? $_SERVER['HTTP_ORIGIN'] : FALSE;

// check if the Origin is a allowed one
if ($http_origin !== FALSE && in_array($http_origin, $allowed_http_origins))
{
	// set the Access-Control-Allow-Origin to allow the requested origin
	header('Access-Control-Allow-Origin: ' . $http_origin, true);
}

Cacher is the code snippet organizer for pro developers

We empower you and your team to get more done, faster

Access-Control-Allow-Origin Snipet