<?php

// +----------------------------------------------------------------------
// | ThinkPHP [ WE CAN DO IT JUST THINK ]
// +----------------------------------------------------------------------
// | Copyright (c) 2006-2016 http://thinkphp.cn All rights reserved.
// +----------------------------------------------------------------------
// | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )
// +----------------------------------------------------------------------
// | Author: liu21st <liu21st@gmail.com>
// +----------------------------------------------------------------------
// [ 应用入口文件 ]
ini_set('session.cookie_secure', true); // 修复低危漏洞: Cookie 未设置 Secure 属性
header("Strict-Transport-Security:max-age=31536000;"); // Strict-Transport-Security 响应头缺失

// 定义应用目录
define('APP_PATH', __DIR__ . '/../application/');


// 允许跨域网址
$origin = isset($_SERVER['HTTP_ORIGIN'])? $_SERVER['HTTP_ORIGIN'] : '';  
$allow_origin = array(  
    'https://gz.check.gzdata.com.cn',  
    'https://clb.gz.check.gzdata.com.cn',
    'https://cxhs.gzdata.com.cn',
    'https://dev.gz.check.ioi.plus',
);  
if(in_array($origin, $allow_origin)){  
    header('Access-Control-Allow-Origin:'.$origin);       
}
header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization");
//header('Access-Control-Allow-Methods: GET, POST, PUT,DELETE,OPTIONS,PATCH');
header('Access-Control-Allow-Methods: GET, POST');
if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
    exit;
}

// 判断是否安装
if (!is_file(APP_PATH . 'admin/command/Install/install.lock')) {
    header("location:./install.php");
    exit;
}

// 加载框架引导文件
require __DIR__ . '/../thinkphp/start.php';