Magento 2 CORS
graycore/magento2-cors
Enables configurable CORS Headers on GraphQL and REST APIs
Build Tests
Code Quality
Tested on Magento 2.4.8-p3
Recent Test History
Each release is tested against the latest Magento version at that time.
+8 older tests
Top Contributors
View Leaderboard
Share This Module's Status
README
Loaded from GitHubMagento 2 CORS
Magento Version Support
Ever try to work with the Magento GraphQL API or REST API from your browser and see the following?
Access to XMLHttpRequest at 'https://my.magento.app' from origin 'http://my.webapp.com' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
This package allows you to securely add the necessary CORS headers to the Magento 2 GraphQL or REST APIs with ease.
Purpose
When building a headless application for Magento, or working with a client that respects the CORS protocol, you will need CORS headers on your backend resource.
This package will add configurable CORS Resource headers to the Magento 2 GraphQL or REST APIs, allowing you to access the GraphQL or REST APIs from your browser.
Getting Started
This module is intended to be installed with composer. From the root of your Magento 2 project:
- Download the package
composer require graycore/magento2-cors
- Configure the package
- Enable the package
./bin/magento module:enable Graycore_Cors
Features
-
Respects the full CORS Protocol
-
Access-Control-Allow-Origin -
Access-Control-Allow-Methods -
Access-Control-Allow-Headers -
Access-Control-Max-Age -
Access-Control-Expose-Headers -
Access-Control-Allow-Credentials
-
Helpful Links
Upgrading
This content is fetched directly from the module's GitHub repository. We are not the authors of this content and take no responsibility for its accuracy, completeness, or any consequences arising from its use.