Styjun

Took a trip to a parallel universe, need help deciphering

Python: return float 1.0 as int 1 but float 1.5 as float 1.5

How could indestructible materials be used in power generation?

Brothers & sisters

Why do I get two different answers for this counting problem?

How can I prevent hyper evolved versions of regular creatures from wiping out their cousins?

Can a virus destroy the BIOS of a modern computer?

Were any external disk drives stacked vertically?

Why does Kotter return in Welcome Back Kotter

Can I use a neutral wire from another outlet to repair a broken neutral?

Combinations of multiple lists

1960's book about a plague that kills all white people

Is it unprofessional to ask if a job posting on GlassDoor is real?

Did Shadowfax go to Valinor?

What exploit are these user agents trying to use?

intersection of two sorted vectors in C++

Alternative to sending password over mail?

Why is Collection not simply treated as Collection<?>

Why can't we play rap on piano?

90's TV series where a boy goes to another dimension through portal near power lines

What reasons are there for a Capitalist to oppose a 100% inheritance tax?

SSH "lag" in LAN on some machines, mixed distros

Is the Joker left-handed?

Is it possible to create light that imparts a greater proportion of its energy as momentum rather than heat?

Separate Desktop and Mobile sites - How do i plan the backend?

How to print a number with commas as thousands separators in JavaScriptPHP redirect to mobile version if user browses to subdomainhtaccess create the appearance of a subdomin but use a MVC controller instead of a folderHow I can avoid requesting Basic Authentication when HTTP method is OPTIONS on Apache .htaccess?How to implement OAuth 2.0 like token based authentication for rest API which is accessed from mobile and javascript web applicationsHow to manage session for a user logged in from mobile app in PHP?How to get domain name with PHPWhy is my subdomain redirecting to www.m.example.comHow to implement different sub domain for different web roles hosted in a single cloud serviceNeed some assistance with redirects in .htaccess

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

0

Not sure under which category my question falls. I'm in great confusion and really need some expert suggestions.

I have PHP site for E-commerce (Opencart) running on the domain- www.example.com and developed a PWA mobile website which is ready to be launched, at this point I have fallen into so many confusion.

• I want to host a mobile site with subdomain m.example.com. The backend (REST API) is same for desktop and the mobile site which is hosted in example.com
  


• when I make API calls from m.example.com to example.com preflight OPTION request is sent for each and every request which almost takes 200ms to 300ms.



• There is an option to avoid OPTION requests by making the simple request, but not possible with my case as I have Token based authentication and need to token in every API call




• To avoid OPTION requests, the option is to host the same REST API in m.example.com as well (just checked mobile.twitter.com API request goes to mobile.twitter.com), and both m.exampole.com and example.com sharing common Database.



• This has another problem, any change in the API needs the update in both sites.

My questions are

• What is the optimal way of handling this situation?




• if I'm going with m.example.com - the redirection can be done at front-end level or via a .htaccess rule, which option is ideal?




• Is it a good idea to host REST API in m.example.com as well?

javascript php .htaccess subdomain e-commerce

share|improve this question

edited Mar 21 at 22:14

monda

asked Mar 21 at 21:58

mondamonda

1,60394273

• 
  
  
  

  
  2
  

  
  
  
  
  
  

  
  
  Please, for the love of any future developers looking at this codebase, do not create 2 versions of the site. Use some responsive css and then you only need to maintain one version of the site. If however; you insist on creating 2 versions of the site; there is no way to prevent the OPTIONS request because that's the browser reaching out the get the Access-Control-Allowed-Origin headers to see if it's allowed to interact with that server. Update your Access-Control-Allowed-Origin to contain all the domains that will access that service. welcome to the world of CORS, prepare to cry.
  
  – Adam H
  Mar 21 at 22:04
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  Just one instance of the service with the correct headers set will address your problems, all API calls can go to www.example.com even from m.example.com.
  
  – Adam H
  Mar 21 at 22:05
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I have enabled CORS already. I have checked some of mobile sites for example mobile.twitter.com , m.snapdal.com, m.licious.in etc , they all make API to same subdomain instead of main domain . Just curios to know how do they do it? By hosting API is subdomain as well ??? @AdamH
  
  – monda
  Mar 21 at 22:11
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  It's all in the Access-Control-Allow-Origin Header that your web service returns. If you are using credentials then you can't use * for the header, instead set it to Request.Origin or whatever the equivalent is in PhP
  
  – Adam H
  Mar 21 at 22:14
  
  

  
  
  
  

add a comment | 

0

Not sure under which category my question falls. I'm in great confusion and really need some expert suggestions.

I have PHP site for E-commerce (Opencart) running on the domain- www.example.com and developed a PWA mobile website which is ready to be launched, at this point I have fallen into so many confusion.

• I want to host a mobile site with subdomain m.example.com. The backend (REST API) is same for desktop and the mobile site which is hosted in example.com
  


• when I make API calls from m.example.com to example.com preflight OPTION request is sent for each and every request which almost takes 200ms to 300ms.



• There is an option to avoid OPTION requests by making the simple request, but not possible with my case as I have Token based authentication and need to token in every API call




• To avoid OPTION requests, the option is to host the same REST API in m.example.com as well (just checked mobile.twitter.com API request goes to mobile.twitter.com), and both m.exampole.com and example.com sharing common Database.



• This has another problem, any change in the API needs the update in both sites.

My questions are

• What is the optimal way of handling this situation?




• if I'm going with m.example.com - the redirection can be done at front-end level or via a .htaccess rule, which option is ideal?




• Is it a good idea to host REST API in m.example.com as well?

javascript php .htaccess subdomain e-commerce

share|improve this question

edited Mar 21 at 22:14

monda

asked Mar 21 at 21:58

mondamonda

1,60394273

• 
  
  
  

  
  2
  

  
  
  
  
  
  

  
  
  Please, for the love of any future developers looking at this codebase, do not create 2 versions of the site. Use some responsive css and then you only need to maintain one version of the site. If however; you insist on creating 2 versions of the site; there is no way to prevent the OPTIONS request because that's the browser reaching out the get the Access-Control-Allowed-Origin headers to see if it's allowed to interact with that server. Update your Access-Control-Allowed-Origin to contain all the domains that will access that service. welcome to the world of CORS, prepare to cry.
  
  – Adam H
  Mar 21 at 22:04
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  Just one instance of the service with the correct headers set will address your problems, all API calls can go to www.example.com even from m.example.com.
  
  – Adam H
  Mar 21 at 22:05
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I have enabled CORS already. I have checked some of mobile sites for example mobile.twitter.com , m.snapdal.com, m.licious.in etc , they all make API to same subdomain instead of main domain . Just curios to know how do they do it? By hosting API is subdomain as well ??? @AdamH
  
  – monda
  Mar 21 at 22:11
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  It's all in the Access-Control-Allow-Origin Header that your web service returns. If you are using credentials then you can't use * for the header, instead set it to Request.Origin or whatever the equivalent is in PhP
  
  – Adam H
  Mar 21 at 22:14
  
  

  
  
  
  

add a comment | 

Not sure under which category my question falls. I'm in great confusion and really need some expert suggestions.

I have PHP site for E-commerce (Opencart) running on the domain- www.example.com and developed a PWA mobile website which is ready to be launched, at this point I have fallen into so many confusion.

• I want to host a mobile site with subdomain m.example.com. The backend (REST API) is same for desktop and the mobile site which is hosted in example.com
  


• when I make API calls from m.example.com to example.com preflight OPTION request is sent for each and every request which almost takes 200ms to 300ms.



• There is an option to avoid OPTION requests by making the simple request, but not possible with my case as I have Token based authentication and need to token in every API call




• To avoid OPTION requests, the option is to host the same REST API in m.example.com as well (just checked mobile.twitter.com API request goes to mobile.twitter.com), and both m.exampole.com and example.com sharing common Database.



• This has another problem, any change in the API needs the update in both sites.

My questions are

• What is the optimal way of handling this situation?




• if I'm going with m.example.com - the redirection can be done at front-end level or via a .htaccess rule, which option is ideal?




• Is it a good idea to host REST API in m.example.com as well?

javascript php .htaccess subdomain e-commerce

share|improve this question

edited Mar 21 at 22:14

monda

asked Mar 21 at 21:58

mondamonda

1,60394273

share|improve this question

edited Mar 21 at 22:14

monda

asked Mar 21 at 21:58

mondamonda

1,60394273

share|improve this question

edited Mar 21 at 22:14

monda

asked Mar 21 at 21:58

mondamonda

1,60394273

asked Mar 21 at 21:58

mondamonda

1,60394273

asked Mar 21 at 21:58

mondamonda

1,60394273