Filter
import javax.servlet.*;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
/**
* @Description CORS解决跨域
* @Author WangKun
* @Date 2021/2/3 15:31
* @Version
*/
public class CorsFilter implements Filter {
@Override
public void init(FilterConfig filterConfig) throws ServletException {
}
/**
* @Description 对外接口CORS解决跨域
* @param request
* @param response
* @param filterChain
* @Throws
* @Return void
* @Date 2021-02-03 16:05:31
* @Author WangKun
**/
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) throws IOException, ServletException {
HttpServletRequest req = (HttpServletRequest) request;
HttpServletResponse resp = (HttpServletResponse) response;
String origin = req.getHeader("Origin");
if (origin == null) {
origin = req.getHeader("Referer");
}
resp.setHeader("Access-Control-Allow-Origin", origin);
resp.setHeader("Access-Control-Allow-Credentials", "true");
resp.setHeader("Access-Control-Allow-Headers", "User-Agent,Origin,Cache-Control,Content-type,Date,Server,withCredentials,AccessToken");
resp.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS, HEAD");
resp.setHeader("Access-Control-Max-Age", "3600");
resp.setHeader("Access-Control-Expose-Headers", "accession");
resp.setHeader("Access-Control-Request-Headers", "accession");
resp.setHeader("Expires", "-1");
resp.setHeader("Cache-Control", "no-cache");
resp.setHeader("pragma", "no-cache");
filterChain.doFilter(request, response);
}
@Override
public void destroy() {
}
}
web.xml 配置
<filter>
<filter-name>cors</filter-name>
<filter-class>com.xxx.xxx.CorsFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>cors</filter-name>
<url-pattern>/restful/*</url-pattern>
</filter-mapping>