Level 28
Have you already check https://laravel.com/docs/10.x/requests#configuring-trusted-proxies?
Sep 26, 2024
1
Level 1
Laravel 10 CROS issue
I get below error in Laravel 10
Access to XMLHttpRequest at 'https://member.dev.mydomain.com/members/fernando/basic' from origin 'https://admin.dev.mydomain.com' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: The 'Access-Control-Allow-Origin' header contains multiple values 'https://admin.dev.mydomain.com, https://admin.dev.mydomain.work', but only one is allowed.
This is my kernel.php
protected $middleware = [
\App\Http\Middleware\TrustHosts::class,
\App\Http\Middleware\TrustProxies::class,
\App\Http\Middleware\PreventRequestsDuringMaintenance::class,
\App\Http\Middleware\TrimStrings::class,
// \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
// \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
// \Illuminate\Session\Middleware\StartSession::class,
// \App\Http\Middleware\PreflightResponse::class,
\Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode::class,
\Illuminate\Http\Middleware\HandleCors::class,
\App\Http\Middleware\PreventRequestsDuringMaintenance::class,
//\App\Http\Middleware\EncryptCookies::class,
//\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
//\Illuminate\View\Middleware\ShareErrorsFromSession::class,
// \Illuminate\Foundation\Http\Middleware\VerifyPostSize::class,
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
];
This is my config/cors.php
<?php
return [
'paths' => ['*'],
'allowed_methods' => ['*'],
'allowed_origins' => ['*.dev.mydomain.com'],
'allowed_origins_patterns' => [],
'allowed_headers' => ['*'],
'exposed_headers' => [],
'max_age' => 0,
'supports_credentials' => true,
];
Please or to participate in this conversation.