Allows AJAX requests from other sites in your multisite network even if they are on another domain or subdomain
AJAX requests to this site from another (those containing an Origin header) will be allowed for any domain in your multisite setup, no configuration required
Like this plugin? Please consider leaving a 5-star review.
Love this plugin or want to help the LocalHero Project? Please consider making a donation.
This section describes how to install the plugin and get it working.
lh-multisite-cors
folder to the /wp-content/plugins/
directory.If you want to integrate content from your site to JavaScript applications running on other domains then the CORS standard is a way to allow this. Allowing CORS for all sites is a security problem but given you are the super admin for sites on your own network they should be trustworthy, therefore CORS can be safely activated.
CORS is more modern and more secure since it works with the browser’s same-origin policy and XmlHttpRequest objects rather than bypassing them.
You can find the CORS spec here: http://www.w3.org/TR/cors/ You can learn more about how to use CORS here: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
LH Multisite CORS, and all https://lhero.org plugins are made to WordPress standards. Therefore they should work with all well coded plugins and themes. However not all plugins and themes are well coded (and this includes many popular ones).
If something does not work properly, firstly deactivate ALL other plugins and switch to one of the themes that come with core, e.g. twentyfirteen, twentysixteen etc.
If the problem persists please leave a post in the support forum: https://wordpress.org/support/plugin/lh-multisite-cors/. I look there regularly and resolve most queries.
Please contact me for custom work and enhancements here: https://shawfactor.com/contact/
1.00 April 12, 2016
Initial release.1.01 March 24, 2017
Fixed php strict errors1.02 July 27, 2017
Added class check