yunzerwebsite/tp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

更新公共跨域

Browse Source
This commit is contained in:
扫地僧 2026-01-28 23:37:51 +08:00
parent 743d8d9ddf
commit 18dfebf0de
4 changed files with 9 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.env
View File

@ -1,8 +1,8 @@
APP_DEBUG = true APP_DEBUG = true
DB_TYPE = mysql DB_TYPE = mysql
DB_HOST = 10.168.1.239 DB_HOST = 192.168.31.10
DB_NAME = official_website DB_NAME = official_webiste
DB_USER = official DB_USER = official
DB_PASS = meitian@#! DB_PASS = meitian@#!
DB_PORT = 3306 DB_PORT = 3306

1
app/admin/middleware.php
View File

@ -6,6 +6,7 @@ return [
// 多语言加载 // 多语言加载
// \think\middleware\LoadLangPack::class, // \think\middleware\LoadLangPack::class,
// Session初始化 // Session初始化
\app\common\middleware\AllowCrossDomain::class,
\think\middleware\SessionInit::class, \think\middleware\SessionInit::class,
]; ];

15
app/admin/middleware/CustomCors.php → app/common/middleware/AllowCrossDomain.php
View File

@ -1,28 +1,27 @@
<?php <?php
namespace app\admin\middleware; namespace app\common\middleware;
use think\Response; use think\Response;
use think\Request; use think\Request;
/** /**
* 自定义跨域中间件 * 公共跨域中间件
* 解决 AJAX 请求 Cookie 传递问题 * 供所有应用共用
*/ */
class CustomCors class AllowCrossDomain
{ {
public function handle(Request $request, \Closure $next): Response public function handle(Request $request, \Closure $next): Response
{ {
$origin = $request->header('origin', ''); $origin = $request->header('origin', '');
// 允许的域名列表(根据实际情况修改)
$allowedDomains = [ $allowedDomains = [
'http://localhost:3000', 'http://localhost:3000',
'http://localhost:8000', 'http://localhost:8000',
'http://127.0.0.1:3000', 'http://127.0.0.1:3000',
'http://127.0.0.1:8000', 'http://127.0.0.1:8000',
'http://backapi.yunzer.cn',
'http://localhost:5173', 'http://localhost:5173',
'http://backapi.yunzer.cn',
'http://www.yunzer.cn', 'http://www.yunzer.cn',
'https://www.yunzer.cn', 'https://www.yunzer.cn',
'http://yunzer.cn', 'http://yunzer.cn',
@ -33,11 +32,9 @@ class CustomCors
'https://backend.yunzer.cn', 'https://backend.yunzer.cn',
]; ];
// 检查是否为允许的域名
if (in_array($origin, $allowedDomains)) { if (in_array($origin, $allowedDomains)) {
$header['Access-Control-Allow-Origin'] = $origin; $header['Access-Control-Allow-Origin'] = $origin;
} else { } else {
// 对于同源请求,允许当前域名
if (!empty($origin)) { if (!empty($origin)) {
$header['Access-Control-Allow-Origin'] = $origin; $header['Access-Control-Allow-Origin'] = $origin;
} else { } else {
@ -45,13 +42,11 @@ class CustomCors
} }
} }
// 处理 OPTIONS 预检请求,直接返回
if ($request->method() === 'OPTIONS') { if ($request->method() === 'OPTIONS') {
$header['Access-Control-Allow-Credentials'] = 'true'; $header['Access-Control-Allow-Credentials'] = 'true';
$header['Access-Control-Max-Age'] = 1800; $header['Access-Control-Max-Age'] = 1800;
$header['Access-Control-Allow-Methods'] = 'GET, POST, PATCH, PUT, DELETE, OPTIONS'; $header['Access-Control-Allow-Methods'] = 'GET, POST, PATCH, PUT, DELETE, OPTIONS';
$header['Access-Control-Allow-Headers'] = 'Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With'; $header['Access-Control-Allow-Headers'] = 'Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With';
\think\facade\Log::record('CORS OPTIONS preflight for: ' . $origin);
return response('', 200, $header); return response('', 200, $header);
} }

9
app/index/middleware.php
View File

@ -1,12 +1,5 @@
<?php <?php
// 全局中间件定义文件
return [ return [
// 全局跨域中间件 \app\common\middleware\AllowCrossDomain::class,
\think\middleware\AllowCrossDomain::class,
// 全局请求缓存
// \think\middleware\CheckRequestCache::class,
// 多语言加载
// \think\middleware\LoadLangPack::class,
// Session初始化
\think\middleware\SessionInit::class, \think\middleware\SessionInit::class,
]; ];