laravel Response to preflight request doesn't pass access control check: The 'Access-Control-Allow-Origin' header contains multiple values '*, *', but only one is allowed. code example

Example: laravel Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on

Step 1 : Create Cors middleware.
php artisan make:middleware Cors

Step 2 : Add below lines in handle function before return.
  //header('Access-Control-Allow-Origin:  *');
header('Access-Control-Allow-Origin:  http://localhost:4200');
header('Access-Control-Allow-Headers:  Content-Type, X-Auth-Token, Authorization, Origin');
header('Access-Control-Allow-Methods:  POST, PUT');

Step 3 : Register the middileware in app/Http/Kernel.php file
  
  Add below line in $middleware array 

 \App\Http\Middleware\Cors::class,

Step 4 : Now we have to call the middleware in app/Http/Kernel.php file
  Add below line in $routeMiddleware array 

'cors' => \App\Http\Middleware\Cors::class,



Using the * works rather than the host origin. Was missing the Cors.php middleware in the array as well

Tags:

Misc Example