Adds CORS (Cross-Origin Resource Sharing) headers support in your Symfony application
MIT License
Bot releases are hidden (Show)
Full Changelog: https://github.com/nelmio/NelmioCorsBundle/compare/2.4.0...2.5.0
Published by Seldaek 11 months ago
Full Changelog: https://github.com/nelmio/NelmioCorsBundle/compare/2.3.1...2.4.0
Published by Seldaek over 1 year ago
Full Changelog: https://github.com/nelmio/NelmioCorsBundle/compare/2.3.0...2.3.1
CacheableResponseVaryListener
's priority from 0 to -10 to ensure it runs after FrameworkExtraBundle listeners have set their cache headers (#179)expose_headers
to a wildcard '*'
which exposes all headers, this works as long as allow_credentials is not enabled as per the spec (#132)skip_same_as_origin
flag (default to true which is the old behavior) to allow opting out of skipping the CORS headers in the response if the Origin matches the application's hostname (#178)Published by Seldaek almost 3 years ago
Published by Seldaek over 3 years ago
Published by Seldaek about 4 years ago
Published by Seldaek almost 5 years ago
Published by Seldaek almost 5 years ago
Access-Control-Allow-Origin: null
headers to mark blocked requestsPublished by dunglas almost 7 years ago
Published by Seldaek over 7 years ago
Published by Seldaek over 7 years ago
Published by Seldaek over 7 years ago
forced_allow_origin_value
to always set the header regardless of CORS, so that requests can properly be cached even if they are not always accessed via CORSforced_allow_origin_value
option to force the value that is returned, in case you cache responses and can not have the allowed origin automatically set to the Origin headerAccess-Control-Allow-Headers
being sent even when it was emptyPublished by Seldaek almost 10 years ago
Published by Seldaek almost 10 years ago
Published by Seldaek about 10 years ago