注解的方式
@CrossOrigin(origins = "http://localhost:8081", allowCredentials = "true")
拦截器的方式
package com.rbynode.rbyaipro.interceptor;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class CorsInterceptor implements HandlerInterceptor {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
// 允许跨域请求的域名
response.setHeader("Access-Control-Allow-Origin", "http://localhost:8081");
// 允许携带凭据
response.setHeader("Access-Control-Allow-Credentials", "true");
// 允许的请求方法
response.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE");
// 允许的请求头
response.setHeader("Access-Control-Allow-Headers", "*");
// 如果是预检请求(OPTIONS 请求),直接返回
if ("OPTIONS".equalsIgnoreCase(request.getMethod())) {
response.setStatus(HttpServletResponse.SC_OK);
return false;
}
return true;
}
@Override
public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
// 在请求处理之后调用,可以在这里进行一些操作
}
@Override
public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
// 在整个请求结束之后调用,可以在这里进行一些操作
}
}
package com.rbynode.rbyaipro.config;
import com.rbynode.rbyaipro.interceptor.CorsInterceptor;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
@Configuration
public class WebConfig implements WebMvcConfigurer {
@Override
public void addInterceptors(InterceptorRegistry registry) {
registry.addInterceptor(new CorsInterceptor()).addPathPatterns("/**");
}
}