添加如下代码
原理有很多其它文章已经讲过了
这里分两步就能处理跨域请求
- 设置相关的请求头
- 将所有的options直接以成功状态返回
@WebFilter(filterName = "CorsFilter ")
@Configuration
public class CorsFilter implements Filter {
@Override
public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {
HttpServletResponse response = (HttpServletResponse) res;
response.setHeader("Access-Control-Allow-Origin", 改成自己允许访问的url,如http://localhost:8080);
response.setHeader("Access-Control-Allow-Credentials", "true");
response.setHeader("Access-Control-Allow-Methods", "*");
response.setHeader("Access-Control-Max-Age", "3600");
response.setHeader("Access-Control-Allow-Headers", "satoken,access-control-allow-origin,x-requested-with");//因为设置了Access-Control-Allow-Credentials为true,所以要特别设置
HttpServletRequest request = (HttpServletRequest) req;
if ((request.getMethod().equals("OPTIONS"))) {
((HttpServletResponse) res).setStatus(HttpServletResponse.SC_OK);
return;
}
chain.doFilter(req, res);
}
}