• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question How to manage CORS with PHP using Plesk

PiTiNiNjA

PiTiNiNjA

New Pleskian
Hello!

I'm having trouble trying to enable CORS on my PHP API.

If I put header('Access-Control-Allow-Origin: *'); in my PHP code, it has no effect.

But if I put Header set Access-Control-Allow-Origin * in the Plesk Apache configuration, then it works.

How can I let PHP manage the CORS headers?

Regards
 
Last edited:
Hello IgorG and thank you for your time,

I've read this documentation already. In fact if I put these lines in Plesk Apache directives:

Header set Access-Control-Allow-Origin "*"
Header set Access-Control-Allow-Credentials "true"
Header set Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS"
Header set Access-Control-Allow-Headers "X-Requested-With,Content-Type,Authorization"
Header set Access-Control-Max-Age "864000"

It works great, but what I want is to set CORS headers in my PHP script (not in Plesk) so I can do programmatic controls.

How could I achieve this? Is it possible to "override" Plesk with PHP when it comes to CORS headers?
 
Last edited:
Hi,

I've tried all these methods but for some reason it's not working. I am still getting the CORS errors. Any ideas how I can fix it?
 
You must log in or register to reply here.

Similar threads

Y
Question Issue Implementing Dynamic CORS Headers in Plesk’s Additional NGINX Directives
Replies
1
Views
376
yfain
Y
s-light
Question NINGX CORS for multiple sub.domains
Replies
1
Views
803
s-light
s-light
Lrnt
Question Proxy/Secured HTTP & WS requests to avoid CORS
Replies
1
Views
764
Lrnt
Lrnt
K
Issue Plesk NodeJS Server: CORS error upon every request
Replies
4
Views
3K
keithchasen
K
S
Issue htaccess header missing
Replies
1
Views
1K
SKDamon
S
Back
Top