针对前后端分离导致的跨域现象,现整理出两种解决方案:
1:继承WebMvcConfigurerAdapter,重新addCorsMappings方法,以支持
2:自定义过滤器,手动设置response的header
方案一:
@Configuration
public class WebMvcConfigure extends WebMvcConfigurerAdapter {
/**
* 允许跨域
*
* @param registry 注册作用范围
*/
@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**")
.allowedOrigins("*")
.allowedMethods("GET", "POST", "PUT", "OPTIONS", "DELETE", "PATCH")
.allowCredentials(true).maxAge(3600);
}
}
方案二:
@Component
public class JsonFilter implements Filter {
@Override
public void init(FilterConfig filterConfig) throws ServletException {
}
@Override
public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
// 处理json跨域问题
HttpServletResponse response = (HttpServletResponse)servletResponse;
response.setHeader("Access-Control-Allow-Origin", "*");
filterChain.doFilter(servletRequest,response);
}
@Override
public void destroy() {
}
}
一般情况下选择方案一,这可以处理大部分的跨域情况。但在设置拦截器的情况下,则方案一就不可取了(此时采用方案二)。
原因在于:
拦截器是有顺序的:自定义拦截器执行优先与cors拦截器
参考:https://blog.csdn.net/bingospunky/article/details/80136164