public/index.php line 4

  1. <?php
  2. use App\Kernel;
  4. require_once dirname(__DIR__).'/vendor/autoload_runtime.php';
  6. $method $_SERVER['REQUEST_METHOD'];
  7. $allowedOrigins = [
  8.     'https://kindaka-frontend.vercel.app',
  9.     'http://localhost:3030/'// Add more origins here
  10. ];
  12. if ($method === 'OPTIONS') {
  13.     // $origin = $_SERVER['HTTP_ORIGIN'];
  15.     // if (in_array($origin, $allowedOrigins)) {
  16.         header("Access-Control-Allow-Origin: *");
  17.         header('Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, PATCH, DELETE');
  18.         header('Access-Control-Allow-Headers: X-API-KEY,locale,lang, Origin, X-Requested-With, Content-Type, Accept, Access-Control-Request-Method, Authorization');
  19.         header('Access-Control-Allow-Credentials: true');
  20.         header('Access-Control-Max-Age: 86400'); // Cache the preflight response for 24 hours (optional)
  21.         http_response_code(204); // Set HTTP status code 204 (No Content) for the preflight response
  22.     // }
  23.     exit;
  24. }
  26. // $origin = $_SERVER['HTTP_ORIGIN'];
  28. // if (in_array($origin, $allowedOrigins)) {
  29.     header("Access-Control-Allow-Origin: *");
  30.     header('Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, PATCH, DELETE');
  31.     header('Access-Control-Allow-Headers: X-API-KEY, Origin, X-Requested-With, Content-Type, Accept, Access-Control-Request-Method, Authorization');
  32.     header('Access-Control-Allow-Credentials: true');
  33. // }
  35. return function (array $context) {
  36.     return new Kernel($context['APP_ENV'], (bool) $context['APP_DEBUG']);
  37. };