CORS stands for Cross-Origin Resource Sharing an is a specification that allow modern browsers to request (and receive) data from a domain other than the one serving the page that made the request.
If this is the first time you’re hearing about this, please allow me to introduce you to these two great resources:
So you’re building your API using Laravel and when when you try to make a XHR request you see the following message in your browser’s console:
This means your server is not sending back to the client the headers that allow CORS:
So how to implement this in Laravel? Super easy! Middlewares come to the rescue.
Using your Terminal, navigate to your project’s root directory and issue the following artisan command:
php artisan make:middleware Cors
Now, using your editor of choice, change the newly created /app/Http/Middleware/Cors.php so it look like this:
Next update /app/Http/Kernel.php adding the following instruction which will make Laravel aware of your custom middleware:
protected $routeMiddleware = [
To wrap things up, just use your middleware as you’re used to:
Route::get('breweries', ['middleware' => 'cors', function()
And that would be all. Of course there are several other options to consider when enabling CORS but the way to return them to the browser is the same, as shown right above.
Hope that helps!