@Configuration
public class CorsConfig {
@Bean
public CorsWebFilter corsWebFilter(){
CorsConfiguration corsConfiguration = new CorsConfiguration();
// 允许跨域访问的域名。*-代表所有域名,一般不要写*:不安全;不能携带cookie
corsConfiguration.addAllowedOrigin("http://manager.gmall.com");
corsConfiguration.addAllowedOrigin("http://www.gmall.com");
corsConfiguration.addAllowedOrigin("http://gmall.com");
corsConfiguration.addAllowedOrigin("http://localhost:1000");
// 允许跨域访问的请求方式。*-任何请求方式
corsConfiguration.addAllowedMethod("*");
// 是否允许携带cookie
corsConfiguration.setAllowCredentials(true);
// 允许跨域访问的头信息
corsConfiguration.addAllowedHeader("*");
UrlBasedCorsConfigurationSource configurationSource = new UrlBasedCorsConfigurationSource();
configurationSource.registerCorsConfiguration("/**", corsConfiguration);
return new CorsWebFilter(configurationSource);
}
}
或者在nginx配置文件中配置cors也行 百度即可