Add the Origin from the requests to the Access-Control-Allow-Origin header in the response
Question
I'd like to allow all origins to fetch resources from my apache server.
Instead of adding:
Access-Control-Allow-Origin: *
I would like my server to craft a special response with :
Access-Control-Allow-Origin: <the value of the Origin received in the request>
Is there something I can add to httpd.conf to achieve this ?
1 answers
solution1
3 2022-07-06 13:30:57
Seems it can be achieved by adding those two lines:
SetEnvIf Origin ".*\S.*" ORIGIN=$0
Header always set Access-Control-Allow-Origin %{ORIGIN}e env=ORIGIN
The regex pretty much means anything except newline, tab, and space, so as long as the Origin is not empty add it to the response header.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
The 'Access-Control-Allow-Origin' header with apache
Access-Control-Allow-Origin header
Apache No 'Access-Control-Allow-Origin' header
How do you set the Access-Control-Allow-Origin header for the HTTP basic authentication response in Apache?
No 'Access-Control-Allow-Origin' header - Tried all possible solutions
Setting Access-Control-Allow-Origin header on source server
No 'Access-Control-Allow-Origin' header is present on the requested resource"
handle multiple domains with Access-Control-Allow-Origin header in Apache
Apache : CORS header 'Access-Control-Allow-Origin' missing
Confusion on the 'Access-Control-Allow-Origin' header with apache
Related Tags