Refactor code

backend/app/public/index.php

@@ -1,7 +1,18 @@
 <?php
 
 declare(strict_types=1);
-$domain = '.lxdapp.local'; // Leading dot is important for subdomain support
+
+use DI\ContainerBuilder;
+use Slim\Factory\AppFactory;
+use Dotenv\Dotenv;
+
+require __DIR__ . '/../vendor/autoload.php';
+
+// 🔹 Load .env config
+$dotenv = Dotenv::createImmutable(__DIR__ . '/../');
+$dotenv->load();
+
+$domain = $_ENV['MAIN_COOKIE_DOMAIN'] ?? '.lxdapp.local';
 session_set_cookie_params([
     'lifetime' => 0,
     'path' => '/',
@@ -14,13 +25,6 @@ session_set_cookie_params([
 if (session_status() === PHP_SESSION_NONE) {
     session_start();
 }
-use DI\ContainerBuilder;
-use Slim\Factory\AppFactory;
-
-require __DIR__ . '/../vendor/autoload.php';
-
-error_reporting(E_ALL);
-ini_set('display_errors', '1');
 
 // Build Container using PHP-DI
 $containerBuilder = new ContainerBuilder();
@@ -44,11 +48,11 @@ AppFactory::setContainer($container);
 // Create App
 $app = AppFactory::create();
 
+// 🔹 CORS middleware
 $app->add(function ($request, $handler) {
     $response = $handler->handle($request);
-
-    // $origin = $request->getHeaderLine('Origin') ?: '*';
     $origin = $_SERVER['HTTP_ORIGIN'] ?? '*';
+
     return $response
         ->withHeader('Access-Control-Allow-Origin', $origin)
         ->withHeader('Access-Control-Allow-Headers', 'Origin, X-Requested-With, Content-Type, Accept, Authorization')
@@ -56,7 +60,6 @@ $app->add(function ($request, $handler) {
         ->withHeader('Access-Control-Allow-Credentials', 'true');
 });
 
-
 // Register middleware
 (require __DIR__ . '/../src/Bootstrap/middleware.php')($app);