2025-12-25 06:33:21 +01:00
|
|
|
<?php
|
|
|
|
|
|
2026-01-20 20:58:32 +01:00
|
|
|
declare(strict_types=1);
|
|
|
|
|
|
2025-12-25 06:33:21 +01:00
|
|
|
return [
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
| Cross-Origin Resource Sharing (CORS) Configuration
|
|
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
|
| Here you may configure your settings for cross-origin resource sharing
|
|
|
|
|
| or "CORS". This determines what cross-origin operations may execute
|
|
|
|
|
| in web browsers. You are free to adjust these settings as needed.
|
|
|
|
|
|
|
|
|
|
|
| To learn more: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
|
|
|
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
'paths' => ['api/*', 'sanctum/csrf-cookie'],
|
|
|
|
|
|
|
|
|
|
'allowed_methods' => ['*'],
|
|
|
|
|
|
|
|
|
|
'allowed_origins' => ['*'],
|
|
|
|
|
|
|
|
|
|
'allowed_origins_patterns' => [],
|
|
|
|
|
|
|
|
|
|
'allowed_headers' => ['*'],
|
|
|
|
|
|
|
|
|
|
'exposed_headers' => [
|
|
|
|
|
'X-RateLimit-Limit',
|
|
|
|
|
'X-RateLimit-Remaining',
|
|
|
|
|
'Retry-After',
|
|
|
|
|
'X-API-Version',
|
|
|
|
|
'X-API-Version-Status',
|
|
|
|
|
'Deprecation',
|
|
|
|
|
'Sunset',
|
|
|
|
|
],
|
|
|
|
|
|
|
|
|
|
'max_age' => 86400, // 24 hours
|
|
|
|
|
|
|
|
|
|
'supports_credentials' => false,
|
|
|
|
|
|
|
|
|
|
];
|