iandmyhand · February 28, 2020 15:37 · iandmyhand · Feb 28, 2020
diff --git a/nginx-subdomain-allow-origin.conf b/nginx-subdomain-allow-origin.conf
 set $cors "";
 if ($http_origin ~ '^(https)?\:\/\/(local\.)?(dev|www)\.(domain|seconddomain)\.com')) {
 # if ($http_origin ~ '^(https)?\:\/\/([\w\d\.]*){2,}(domain|seconddomain)(\.co)?\.kr') {
    set $cors "true";
 }

 location /test {
    if ($cors = "true") {
        add_header Access-Control-Allow-Origin "$http_origin";
        add_header Access-Control-Allow-Methods "GET, POST, OPTIONS";
        add_header Access-Control-Allow-Headers "Origin, X-Requested-With, Content-Range, Content-Disposition, Content-Type, Authorization";
        add_header Access-Control-Allow-Credentials "true";
    }
 }
	set $cors "";
	if ($http_origin ~ '^(https)?\:\/\/(local\.)?(dev\|www)\.(domain\|seconddomain)\.com')) {
	# if ($http_origin ~ '^(https)?\:\/\/([\w\d\.]*){2,}(domain\|seconddomain)(\.co)?\.kr') {
	set $cors "true";
	}

	location /test {
	if ($cors = "true") {
	add_header Access-Control-Allow-Origin "$http_origin";
	add_header Access-Control-Allow-Methods "GET, POST, OPTIONS";
	add_header Access-Control-Allow-Headers "Origin, X-Requested-With, Content-Range, Content-Disposition, Content-Type, Authorization";
	add_header Access-Control-Allow-Credentials "true";
	}
	}