When allowCredentials is true, allowedOrigins cannot contain the special value “*“

Maggieq8324

已于 2023-03-21 16:33:53 修改

阅读量3.1k

点赞数 7

分类专栏： SpringBoot 文章标签： SpringBoot allowedOrigins

于 2021-09-06 22:23:26 首次发布

以下为本篇文章的主要内容，希望大家多提意见，如果喜欢记得点个推荐哦作者：梦想是咸鱼本文版权归作者和CSDN博客共有，欢迎转载，转载时保留原作者和文章地址即可。

本文链接：https://blog.csdn.net/weixin_41182727/article/details/120140829

版权

SpringBoot 专栏收录该内容

44 篇文章 1 订阅

订阅专栏

前言

项目接口访问出现allowedOrigins cannot contain the special value "*"

java.lang.IllegalArgumentException: When allowCredentials is true, 
allowedOrigins cannot contain the special value "*" since that cannot be set on the "Access-Control-Allow-Origin" response header. 
To allow credentials to a set of origins, list them explicitly or consider using "allowedOriginPatterns" instead.

修改方式

修改allowedOrigins为allowedOriginPatterns
修改前

@Override
public void addCorsMappings(CorsRegistry registry) {
    registry.addMapping("/**")
            .allowedOrigins("*")
            .allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
            .allowCredentials(true)
            .maxAge(3600)
            .allowedHeaders("*");
}

修改后

@Override
public void addCorsMappings(CorsRegistry registry) {
    registry.addMapping("/**")
            .allowedOriginPatterns("*")
            .allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
            .allowCredentials(true)
            .maxAge(3600)
            .allowedHeaders("*");
}

- End - - 个人学习笔记 - - 仅供参考 -

Maggieq8324

关注

7
点赞
踩
14

收藏

觉得还不错? 一键收藏
打赏
2
评论
When allowCredentials is true, allowedOrigins cannot contain the special value “*“

目录java.lang.IllegalArgumentException: When allowCredentials is true, allowedOrigins cannot contain the special value "*" since that cannot be set on the "Access-Control-Allow-Origin" response header. To allow credentials to a set of origins, list them exp
复制链接

扫一扫