CORS (Access Control Allow Origin) on Apache Proxy issue

apache proxy cors mod-proxy mod-headers
Marcello Verona picture Marcello Verona · Jul 15, 2016 · Viewed 16.8k times · Source

I need to send a CORS header from my map server (QGIS mapserver) that use a fast cgi with Apache 2.4.* on the port 8080.

I configured the with a simple

<VirtualHost *:8080>
   [...]
   Header set Access-Control-Allow-Origin "*"
</VirtualHost>

and it works.

I want to set a proxy to avoid the specification of the port in the URL. I have configured another Virtualhost in the port 80:

<VirtualHost *:80>
    ProxyPass /cgi-bin/ http://localhost:8080/
    ProxyPassReverse /cgi-bin/ http://localhost:8080/

    # Is useful this?
    Header set Access-Control-Allow-Origin "*"
</VirtualHost>

but the header is not propagated. There is a solution?

Answer

St&#233;phane picture Stéphane · May 22, 2017

Add always

Header always set Access-Control-Allow-Origin "*"
Header always set Access-Control-Max-Age "1000"
Header always set Access-Control-Allow-Headers "x-requested-with, Content-Type, origin, authorization, accept, client-security-token"

And, enable headers module

a2enmod headers

Related questions

WebSockets and Apache proxy : how to configure mod_proxy_wstunnel?

I have : Apache (v2.4) on port 80 of my server for www.domain1.com, with mod_proxy and mod_proxy_wstunnel enabled node.js + socket.io on port 3001 of the same server. Accessing www.domain2.com (with port 80) redirects to 2. thanks …

Read More
Set up an HTTP proxy to insert a header

I need to test some HTTP interaction with a client I'd rather not modify. What I need to test is the behavior of the server when the client's requests include a certain, static header. I'm thinking the easiest way to …

Read More
Apache reverse proxy with basic authentication

Trying to configure my reverse proxy with basic authentication before forward the traffic to my back end server. Can any one give me a solution. Example here: User(internet) -> reverse proxy / vhosts server (need to add basic authentication …

Read More