Enabling CORS in CakePHP app

Question

I am trying to enable CORS for an API built in CakePHP so that all requests are accessible with the following in the AppController:

public function beforeFilter(         


        

Answer 1

You can do this using the cake response object;

$this->response->header('Access-Control-Allow-Origin', '*');

More info on the response object; http://book.cakephp.org/2.0/en/controllers/request-response.html#setting-headers

However, the beforeRender() callback seems a more logical location.

Another option is to add this header in your apache vhost or htaccess examples can be found in the htaccess file of Html5Boilerplate which is a very interesting thing to look at (well documented), because it contains a lot of optimisations that work nicely with cakephp as well;

https://github.com/h5bp/server-configs-apache/blob/master/dist/.htaccess

http://html5boilerplate.com/