guild/frontend/modules/api/controllers/ApiController.php

<?php

namespace frontend\modules\api\controllers;

use common\behaviors\GsCors;
use yii\filters\auth\CompositeAuth;
use yii\filters\auth\HttpBearerAuth;
use yii\filters\ContentNegotiator;
use yii\rest\Controller;
use yii\web\Response;

class ApiController extends Controller
{

    public function behaviors()
    {
        return [
            'corsFilter' => [
                'class' => GsCors::class,
                'cors' => [
                    'Origin' => ['*'],
                    //'Access-Control-Allow-Credentials' => true,
                    'Access-Control-Allow-Headers' => [
                        'Content-Type',
                        'Access-Control-Headers-Origin',
                        'Authorization',
                        'X-Requested-With'
                    ],
                ]
            ],
            'authenticator' => [
                'class' => CompositeAuth::class,
                'authMethods' => [
                    HttpBearerAuth::class,
                ],
            ],
            [
                'class' => ContentNegotiator::className(),
                'formats' => [
                    'application/json' => Response::FORMAT_JSON,
                ],
            ],
        ];
    }

}
api cors 2021-11-29 18:21:50 +03:00			`<?php`

			`namespace frontend\modules\api\controllers;`

			`use common\behaviors\GsCors;`
fix api controllers 2022-01-14 17:05:29 +03:00			`use yii\filters\auth\CompositeAuth;`
			`use yii\filters\auth\HttpBearerAuth;`
			`use yii\filters\ContentNegotiator;`
api cors 2021-11-29 18:21:50 +03:00			`use yii\rest\Controller;`
fix api controllers 2022-01-14 17:05:29 +03:00			`use yii\web\Response;`
api cors 2021-11-29 18:21:50 +03:00
			`class ApiController extends Controller`
			`{`

			`public function behaviors()`
			`{`
			`return [`
			`'corsFilter' => [`
			`'class' => GsCors::class,`
			`'cors' => [`
			`'Origin' => ['*'],`
			`//'Access-Control-Allow-Credentials' => true,`
			`'Access-Control-Allow-Headers' => [`
			`'Content-Type',`
fix change header in api controller 2023-01-12 16:00:07 +03:00			`'Access-Control-Headers-Origin',`
api cors 2021-11-29 18:21:50 +03:00			`'Authorization',`
			`'X-Requested-With'`
			`],`
			`]`
			`],`
fix api controllers 2022-01-14 17:05:29 +03:00			`'authenticator' => [`
			`'class' => CompositeAuth::class,`
			`'authMethods' => [`
			`HttpBearerAuth::class,`
			`],`
			`],`
			`[`
			`'class' => ContentNegotiator::className(),`
			`'formats' => [`
			`'application/json' => Response::FORMAT_JSON,`
			`],`
			`],`
api cors 2021-11-29 18:21:50 +03:00			`];`
			`}`

			`}`