ServerAdmin xxx@qq.com DocumentRoot "C:/htdocs/demo" ServerName dev.dd.cn ##ErrorLog "logs/dummy-host.localhost-error.log" ##CustomLog "logs/dummy-host.localhost-access.log" combined #Require all denied Header set Access-Control-Allow-Origin *
PHP檔案設定:
配置的含義是允許任何域發起的請求都可以擷取當前伺服器的資料。當然,這樣有很大的危險性,惡意網站可能通過XSS攻擊我們的伺服器。所以我們應該盡量有針對性的對限制安全的來源,例如下面的設定使得只有http://feng.com這個域才能跨域訪問伺服器的API。
httpd.conf:
ServerAdmin xxx@qq.com DocumentRoot "C:/htdocs/demo" ServerName dev.dd.cn ##ErrorLog "logs/dummy-host.localhost-error.log" ##CustomLog "logs/dummy-host.localhost-access.log" combined #Require all denied Header set Access-Control-Allow-Origin http://feng.com
PHP檔案中:
header("Access-Control-Allow-Origin:http://feng.com");
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
