方式一(推荐):在spring.xml文件里写
<mvc:cors>
<mvc:mapping path="/**"
allowed-origin-patterns="*"
allow-credentials="true" />
</mvc:cors>
方式二:配置过滤器解决跨域问题
过滤器
public class CorsFilter implements Filter {
@Override
public void init(FilterConfig filterConfig) throws ServletException {}
@Override
public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
HttpServletRequest request = (HttpServletRequest) servletRequest;
HttpServletResponse response = (HttpServletResponse) servletResponse;
// 允许的域名
response.setHeader("Access-Control-Allow-Origin", "http://localhost:8080");
// 允许的方法
response.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
// 允许的请求头
response.setHeader("Access-Control-Allow-Headers", "*");
// 允许携带凭证(如cookie)
response.setHeader("Access-Control-Allow-Credentials", "true");
filterChain.doFilter(request, response);
}
@Override
public void destroy() {}
}
并在web.xml中配置
<filter>
<filter-name>CorsFilter</filter-name>
<filter-class>com.lin.filter.CorsFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CorsFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>