这是预检请求。
您需要允许 OPTIONS 请求。首先你需要创建 CORS 中间件
<?php
namespace App\Http\Middleware;
use Closure;
class Cors
{
public function handle($request, Closure $next)
{
$headers = [
'Access-Control-Allow-Methods'=> 'POST, GET, OPTIONS, PUT, DELETE',
'Access-Control-Allow-Headers'=> 'X-Requested-With, Content-Type, Accept, Origin, Authorization',
'Access-Control-Allow-Origin' => '*'
];
if($request->getMethod() === 'OPTIONS') {
// The client-side application can set only headers allowed in Access-Control-Allow-Headers
return \response('', 200, $headers);
}
$response = $next($request);
foreach($headers as $key => $value)
$response->header($key, $value);
return $response;
}
}
然后在数组$middleware中添加Http/Kernel.php:
protected $middleware = [
// other middlewares
Cors::class
];
在此之后,所有类型为 OPTIONS 的请求都将返回带有标头的响应 200。