问题一: 简单跨域
Access to fetch at ‘http://xxxxxxxxxxxxxxxxxx’ from origin ‘http://ip:port’ has been blocked by CORS policy: No ‘Access-Control-Allow-Origin’ header is present on the requested resource. If an opaque response serves your needs, set the request’s mode to ‘no-cors’ to fetch the resource with CORS disabled.
问题二: 携带凭证跨域
//vue的main.js
axios.defaults.withCredentials = true;//允许跨域携带cookie信息
Access to XMLHttpRequest at ‘http://xxxxxxxxxxxxxxxxxx’ from origin ‘http://ip:port’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: The value of the ‘Access-Control-Allow-Origin’ header in the response must not be the wildcard ‘*’ when the request’s credentials mode is ‘include’. The credentials mode of requests initiated by the XMLHttpRequest is controlled by the withCredentials attribute.
1、只需要添加这个类为配置文件并且修改对应的url和域名即可
package com.example.picturecompression.config;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.core.env.Environment;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.EnableWebMvc;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
/**
* @Author sandul
* @Version 1.0
* @Description: 跨域处理
* @Date 2022/9/23 10:54
*/
@Configuration
@EnableWebMvc
public class WebMvcConfig implements WebMvcConfigurer {
@Autowired
private Environment environment;
@Override
public void addCorsMappings(CorsRegistry corsRegistry){
String mappings = "/picture/compression/upload,/file/upload";
//从配置文件中获取对应的允许跨域域名,以逗号(,)分割
String origins = environment.getProperty("allowed-origins");
if (origins==null){
origins = "http://localhost:8080";
}
for (String mapping : mappings.split(",")) {
corsRegistry.addMapping(mapping)
.allowedOrigins(origins.split(","))
.allowedMethods(CorsConfiguration.ALL)
.allowedHeaders(CorsConfiguration.ALL)
.allowCredentials(true)//携带凭证
.maxAge(3600);
}
}
}