CORS – Set Access-Control-Allow-Origin for multiple domains

When there is a requirement to allow multiple request origins, you can do it with the following configuration: SetEnvIfNoCase Origin “https?:\/\/(dev|staging|game|mail)?(\d+)?$” ACAO=$0Header always set Access-Control-Allow-Origin %{ACAO}e env=ACAO This needs to go inside the Directory directive in the apache configuration file. With the snippet above, you will be able to allow requests from the following domains […]

Read more "CORS – Set Access-Control-Allow-Origin for multiple domains"