Enable CORS for getting an inline SVG by URL

By using custom rewrite_url, I was able to hijack the request and set its CORS-friendly headers.

class Cors_Media {

    const QUERY_VAR = 'cors_media_id';

    public function init() {
        add_action('init', [$this, 'add_rewrite_rule']);
        add_filter('query_vars', [$this, 'query_vars']);
        add_action('template_redirect', [$this, 'template_redirect']);
    }

    public function query_vars(array $qs) {
        $qs[] = 'cors_media_id';
        return $qs;
    }

    public function add_rewrite_rule() {
        add_rewrite_rule(
            '^cors_media_id/([0-9]+)/?',
            'index.php?cors_media_id=$matches[1]',
            'top'
        );
    }

    public function template_redirect() {
        $att_id = get_query_var('cors_media_id');
        if (empty($att_id)) { return; }
        $url = wp_get_attachment_url($att_id);
        if ($url) {
            $this->show_file($url);
        }
        exit;
    }

    protected function show_file($url) {
        header('Access-Control-Allow-Origin: *');
        echo file_get_contents($url);
        exit;
    }

}

$obj = new Cors_Media;
$obj->init();

Related Posts:

  1. How to remove rest api link: in http headers?
  2. How can I use CURLOPT_USERPWD in wp_remote_post?
  3. Setting Last Modified HTTP Header on static Home Page
  4. If Modified Since HTTP Header
  5. Remove rel=shortlink from HTTP header
  6. HTTP Header on specific page is application instead of text
  7. WordPress 502 | Header Upstream send too big
  8. What is this HTTP_REFERRER “WordPress/4.1.2”
  9. Why is http header providing 404 while site is online?
  10. How do you modify HTTP response headers on feed/?
  11. How does one suppress a 404 status code in a WordPress page?
  12. disable wordpress canonical tag meta
  13. Disable h1 and h2 from rich text editor combobox
  14. Recommended location to set response headers?
  15. Is it safe to fix Access-Control-Allow-Origin (CORS origin) errors with a php header directive?
  16. Clarity needed on usage of multiple 403 forbidden header() functions at the beginning of the plugin files
  17. Additional Option on Custom Header admin
  18. Programmatically log in a wordpress user
  19. How can I change HTTP headers only to posts of a specific category from a plugin
  20. Getting redirect to happen before header output
  21. How do you log a user out with wp_logout?
  22. Change the headers content type with wp_remote_post
  23. Different custom header image on different page
  24. Why I can’t add a script-code into theme-settings without 403-forbidden?
  25. Auto-refresh page every minute?
  26. Authenticate a user for current request
  27. Remove link around logo
  28. Facebook embeds loading the wrong language
  29. Banner in WordPress
  30. Determine what pages are in my header [closed]
  31. I want to hide header in the static homepage that I am working on [closed]
  32. Safe to start a php session on get_header action?
  33. How to Access Script Tags in Header
  34. H1 tags for header image?
  35. Is there a way to get minimal WordPress functions for iframed content?
  36. Problems accessing stylesheets/scripts loaded in WP header
  37. Rotate images in header based on date
  38. Trying to set a cookie based on $_POST parameter
  39. 404/500 error on content images if Referer header is from another domain [closed]
  40. How to add some lines to the wp-login.php header via functions.php?
  41. How to Customize Wp Default Title and a prefix
  42. Hook to change HTTP response headers
  43. allowed_http_origins() only works in theme functions.php
  44. Last-Modified header support doesn’t speed up server processing – want more
  45. Insert stylesheet into WordPress header?
  46. How to register and set http/2 server prefetch for a specific asset?
  47. WordPress Template not getting my Sub-Header File
  48. How to add social follow button to header? [closed]
  49. Empty header tags [closed]
  50. Insert Facebook button into header [closed]
  51. Empty lines in header, how to remove them
  52. Benefits to using CSS for header image instead of html img tag [closed]
  53. Export Header and Footer
  54. How do I begin debugging where the description meta tag is set for my categories?
  55. Inserting iframe right after on header.php
  56. How to add script right after ?
  57. Code needs wrapper/container to put footer back in, but where?
  58. Including PHP files in header.php
  59. Display values of current POST request on page
  60. How do I modify the tag on my Category Archive page?
  61. Remove a link in the header
  62. How to make my banner (logo image) position on the center
  63. Easiest way to use relative URLs in my WordPress header
  64. Should I use do_action in the header file?
  65. Update Code to be Compatible with WP 5.3 (‘cannot modify header information’ warning)
  66. set cookies on certain page only
  67. Twenty seventeen header is not responsive
  68. 3 WP installations on the same domain, with the same header
  69. How to make custom_header_setup() image as background image?
  70. WordPress site screwed up after adding Facebook Pixel inbetween header tags
  71. WordPress cookie issue on login: “ERROR: Cookies are blocked or not supported by your browser. You must enable cookies to use WordPress.”
  72. Insert Code into Header Only on Blog Posts
  73. How do I change top header background color
  74. only header is showing up in posts
  75. In the Header.php file, is there a way to swap between one layout and another?
  76. video header in desktop view, image header in mobile view
  77. expires header in w3 total cache
  78. Force download of MP3 file in Safari
  79. show wordpress data without headers
  80. Override theme metadata in header
  81. Header Image instead of dynamic text
  82. Code to Show for One post only in head
  83. Download custom file in wordpress backend [duplicate]
  84. Removing old code from header
  85. Random header image but also specific header for certain pages
  86. How to remove uncategorised posts from WordPress
  87. Dynamically changing header text depending on URL in WordPress html page
  88. Custom header shows two or three or more images
  89. After being hacked Fatal error: Call to undefined function get_header() in 404.php on line 1
  90. change headline of page
  91. making posts linked outside of WordPress still use the same header and footer
  92. How change the header color?
  93. How to remove lines over text using Phlox theme with Elementor Pro?
  94. Custom Header won’t Repeat
  95. Loading second header.php for other homepage showing double header.
  96. My CSS, footer and header don’t show up!
  97. End of script output before headers – multiple apache error_log errors
  98. Editing Header with a Page Builder [closed]
  99. WordPress custom header parameter combine with cache
  100. wp_redirect problem using code snippets
error code: 523