<?php

return [

    /*
    |--------------------------------------------------------------------------
    | Cross-Origin Resource Sharing (CORS) Configuration
    |--------------------------------------------------------------------------
    |
    | Here you may configure your settings for cross-origin resource sharing
    | or "CORS". This determines what cross-origin operations may execute
    | in web browsers. You are free to adjust these settings as needed.
    |
    | To learn more: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
    |
    */

    'paths' => ['api/*', 'sanctum/csrf-cookie'],

    'allowed_methods' => ['*'],

    'allowed_origins' => array_filter(array_map('trim', explode(',', env(
        'CORS_ALLOWED_ORIGINS',
        'https://yxbd-fangke.ali251.langye.net,http://localhost:8020,http://127.0.0.1:8020,http://localhost:8021,http://127.0.0.1:8021'
    )))),

    // 允许本地开发端口灵活变更（如 8020/8021/8080 等）
    'allowed_origins_patterns' => [
        '/^http:\/\/localhost(?::\d+)?$/',
        '/^http:\/\/127\.0\.0\.1(?::\d+)?$/',
    ],

    'allowed_headers' => ['*'],

    'exposed_headers' => [],

    'max_age' => 86400,

    'supports_credentials' => true,

];