mirror of
https://github.com/henry4682/finance_app.git
synced 2026-07-16 00:10:00 +00:00
38 lines
1.4 KiB
PHP
38 lines
1.4 KiB
PHP
<?php
|
||
|
||
return [
|
||
|
||
/*
|
||
|--------------------------------------------------------------------------
|
||
| Cross-Origin Resource Sharing (CORS) Configuration
|
||
|--------------------------------------------------------------------------
|
||
|
|
||
| Here you may configure your settings for cross-origin resource sharing
|
||
| or "CORS". This determines what cross-origin operations may execute
|
||
| in web browsers. You are free to adjust these settings as needed.
|
||
|
|
||
*/
|
||
|
||
// 🟢 修正 1:確保包含你要戳的所有 API 路徑(包含上傳)
|
||
'paths' => ['api/*', 'sanctum/csrf-cookie', 'login', 'logout'],
|
||
|
||
// 🟢 修正 2:允許前端傳入的 HTTP 方法(GET, POST, PUT, DELETE 都要開)
|
||
'allowed_methods' => ['*'],
|
||
|
||
// 🟢 修正 3:精準允許你的 Vue 前端開發網址(看你前端是在 5173 還是其他埠號)
|
||
// 你也可以直接寫 ['*'] 偷懶大開,但在本地端寫特定網址更安全:
|
||
'allowed_origins' => ['http://localhost:5173', 'http://127.0.0.1:5173'],
|
||
|
||
'allowed_origins_patterns' => [],
|
||
|
||
// 🟢 修正 4:上傳 FormData 時會帶有 Content-Type 等 Header,必須全開
|
||
'allowed_headers' => ['*'],
|
||
|
||
'exposed_headers' => [],
|
||
|
||
'max_age' => 0,
|
||
|
||
// 🟢 修正 5:非常關鍵!因為我們用了 Sanctum 驗證狀態,必須允許傳遞 Cookie/憑證
|
||
'supports_credentials' => true,
|
||
|
||
]; |