Namespaced models and refactored filters

src/Http/After/AllowedDomainsFilter.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace CachetHQ\Cachet\Http\After;
+
+use CachetHQ\Cachet\Models\Setting;
+use Illuminate\Http\Request;
+use Illuminate\Routing\Route;
+use Symfony\Component\HttpFoundation\Response;
+
+class AllowedDomainsFilter
+{
+    public function filter(Route $route, Request $request, Response $response)
+    {
+        // Always allow our own domain.
+        $ourDomain = Setting::get('app_domain');
+        $response->headers->set('Access-Control-Allow-Origin', $ourDomain);
+
+        // Should we allow anyone else?
+        if ($setting = Setting::get('allowed_domains')) {
+            $domains = explode(',', $setting);
+            foreach ($domains as $domain) {
+                $response->headers->set('Access-Control-Allow-Origin', $domain);
+            }
+        }
+
+        return $response;
+    }
+}

src/Http/After/CorsFilter.php

@@ -0,0 +1,17 @@
+<?php
+
+namespace CachetHQ\Cachet\Http\After;
+
+use Illuminate\Http\Request;
+use Illuminate\Routing\Route;
+use Symfony\Component\HttpFoundation\Response;
+
+class CorsFilter
+{
+    public function filter(Route $route, Request $request, Response $response)
+    {
+        $response->headers->set('Access-Control-Allow-Origin', '*');
+
+        return $response;
+    }
+}