php处理跨域问题

如果要实现跨域通过设置Access-Control-Allow-Origin来实现跨域。

$origin = isset($_SERVER[‘HTTP_ORIGIN’]) ? $_SERVER[‘HTTP_ORIGIN’] : ”;

$allow_origin = array(
‘https://stagadmin.xxx.com’,
‘https://stagweb.xxx.com’,
‘https://stagshare.xxx.com’,
‘https://proadmin.xxx.com’,
‘https://proweb.xxx.com’,
‘https://proshare.xxx.com’,
);
if (in_array($origin, $allow_origin)) {
header(‘Access-Control-Allow-Origin:’ . $origin);
header(‘Access-Control-Allow-Credentials:true’);
} else {
header(‘Access-Control-Allow-Origin: *’);
}
header(‘Access-Control-Allow-Methods:GET,POST,PATCH,PUT,OPTIONS,DELETE’);
header(“Access-Control-Allow-Headers:Origin, X-Requested-With, Content-Type, Accept,Authorization”);

例如:客户端的域名是client.runoob.com,而请求的域名是server.runoob.com。

如果直接使用ajax访问,会有以下错误:

XMLHttpRequest cannot load http://server.runoob.com/server.php. No ‘Access-Control-Allow-Origin’ header is present on the requested resource.Origin ‘http://client.runoob.com’ is therefore not allowed access.

1、允许单个域名访问

指定某域名(http://client.runoob.com)跨域访问,则只需在http://server.runoob.com/server.php文件头部添加如下代码:

header(‘Access-Control-Allow-Origin:http://client.runoob.com’);

2、允许多个域名访问

指定多个域名(http://client1.runoob.com、http://client2.runoob.com等)跨域访问,则只需在http://server.runoob.com/server.php文件头部添加如下代码:

$origin = isset($_SERVER[‘HTTP_ORIGIN’])? $_SERVER[‘HTTP_ORIGIN’] : ”;

$allow_origin = array(
‘http://client1.runoob.com’,
‘http://client2.runoob.com’
);

if(in_array($origin, $allow_origin)){
header(‘Access-Control-Allow-Origin:’.$origin);
}

3、允许所有域名访问

允许所有域名访问则只需在http://server.runoob.com/server.php文件头部添加如下代码:

header(‘Access-Control-Allow-Origin:*’);

Leave Comment