My brain is frying. I'm trying to set up a login script on twenty subdomains that will be checked on another subdomain I've found this example for different domains and figure it should be simple enough to utilise but my ereg is crappy <IfModule mod_headers.c> SetEnvIf Origin "http(s)?://(www.)?(domain1.com|domain2.com)$" AccessControlAllowOrigin=$0$1 Header add Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin </IfModule> Code (markup): Is this going to be right? <IfModule mod_headers.c> SetEnvIf Origin "http(s)?://(www.)?domain1.com$" AccessControlAllowOrigin=$0domain1.com Header add Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin </IfModule> Code (markup):
<IfModule mod_headers.c> SetEnvIf Origin "http(s)?://(www\.)?(domain1.org|domain2.com|domain3.net)$" AccessControlAllowOrigin=$0$1 Header add Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin Header set Access-Control-Allow-Credentials true </IfModule> Code (markup):
What does this bit do? (www\.) does it allow for all and any subdomains? because I only have the one domain I'd be looking at this, right? <IfModule mod_headers.c> SetEnvIf Origin "http(s)?://(www\.)?domain1.org$" AccessControlAllowOrigin=$0domain1.org Header add Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin Header set Access-Control-Allow-Credentials true </IfModule> Code (markup):
For subdomain SetEnvIf Origin "^(.*\.example\.com)$" ORIGIN_SUB_DOMAIN=$1 Header set Access-Control-Allow-Origin "%{ORIGIN_SUB_DOMAIN}e" env=ORIGIN_SUB_DOMAIN Code (markup): About (www\.) It allow for all and any subdomains