配置全局中间件

CORS 跨域需要服务端返回的 Response Headers 中返回允许跨域的参数。如下配置公共返回:

  1. <?php
  2. namespace App\Http\Middleware;
  4. use Closure;
  6. class CrossMiddleware
  7. {
  9.     /**
  10.      * Handle an incoming request.
  11.      * @param $request
  12.      * @param Closure $next
  13.      * @return mixed
  14.      */
  16.     public function handle($request, Closure $next)
  17.     {
  19.         $response = $next($request);
  20.         $response->header('Access-Control-Allow-Origin', '*');
  21.         $response->header('Access-Control-Allow-Headers', 'Keep-Alive,X-Requested-With,Cache-Control,Content-Type,auth,sign,Token,Pt,Xsign,toolken,code');
  22.         $response->header('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
  23.         $response->header('Access-Control-Allow-Credentials', 'true');
  24.         $response->header('Access-Control-Max-Age', '3600');
  25.         return $response;
  26.     }
  27. }

异常捕获

因为浏览器会发送 options 类型的请求,路由需要设置为此类型,但是接口过多设置起来十分麻烦。可以直接捕获 HttpException 的 405 异常。

  1. public function render($request, Throwable $exception)
  2. {
  4.   // 如果是跨域
  5.   if ($exception instanceof HttpException && $request->method() == 'OPTIONS') {
  6.     return response()->json();
  7.   }
  9.   return parent::render($request, $exception);
  10. }