跨域解决

SuperWangC

于 2019-03-14 09:10:09 发布

阅读量216

点赞数

分类专栏： SpringBoot 文章标签： cors 跨域

本文链接：https://blog.csdn.net/qq_36595528/article/details/88545506

版权

SpringBoot 专栏收录该内容

3 篇文章 0 订阅

订阅专栏

几种解决跨域的方式

SpringBoot方式

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.cors.CorsConfiguration;
import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
import org.springframework.web.filter.CorsFilter;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;

/**
 * Description: 对跨域提供支持
 * @param: 
 * @return: 
 * @auther: SuperWang
 * @date: 2019/3/13 17:16
 */
@Configuration
public class WebMvcConfig implements WebMvcConfigurer {

	 @Override
	  public void addCorsMappings(CorsRegistry registry) {
		 registry.addMapping("/**").allowedOrigins("*")
         .allowedMethods("GET", "HEAD", "POST","PUT", "DELETE", "OPTIONS")
         .allowCredentials(false).maxAge(3600);
	  }
}

或者

/**
* 描述： 使用Filter 处理跨域请求，即CORS（跨来源资源共享）。
*
* @author city space
*
*/
@Configuration
public class SimpleCORS  implements WebMvcConfigurer{
  /**
  * 设置 跨域请求参数，处理跨域请求
  *
  * @return
  */
  @Bean
  public CorsFilter corsFilter()
  {
    UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
    source.registerCorsConfiguration("/**", buildConfig());
    return new CorsFilter(source);
  }
 
  private CorsConfiguration buildConfig(){
    CorsConfiguration corsConfiguration = new CorsConfiguration();
    // 允许跨域访问的域名
    corsConfiguration.addAllowedOrigin("*");
    // 请求头
    corsConfiguration.addAllowedHeader("*");
    // 请求方法
    corsConfiguration.addAllowedMethod(HttpMethod.DELETE);
    corsConfiguration.addAllowedMethod(HttpMethod.POST);
    corsConfiguration.addAllowedMethod(HttpMethod.GET);
    corsConfiguration.addAllowedMethod(HttpMethod.PUT);
    corsConfiguration.addAllowedMethod(HttpMethod.DELETE);
    corsConfiguration.addAllowedMethod(HttpMethod.OPTIONS);
    // 预检请求的有效期，单位为秒。
    corsConfiguration.setMaxAge(3600L);
    // 是否支持安全证书
    corsConfiguration.setAllowCredentials(true);
    return corsConfiguration;
  }
}

nginx

set $origin '*';#写入需要跨域的请求地址
if ($request_method = 'OPTIONS') {
    add_header 'Access-Control-Allow-Origin' $origin;
    add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
    add_header 'Access-Control-Max-Age' 1728000;
    add_header 'Content-Type' 'text/plain charset=UTF-8';
    add_header 'Content-Length' 0;
    return 204;
}

if ($request_method = 'POST') {
    add_header 'Access-Control-Allow-Origin' $origin;
    add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
    add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
}

if ($request_method = 'GET') {
    add_header 'Access-Control-Allow-Origin' $origin;
    add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
    add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
}