filter或mvc配置解决全局跨域

最新推荐文章于 2024-07-05 17:12:14 发布

华子的博客

最新推荐文章于 2024-07-05 17:12:14 发布

阅读量236

点赞数

分类专栏：简易代码模块文章标签： filter mvc interceptor servlet 过滤器

本文链接：https://blog.csdn.net/weixin_47628141/article/details/118056319

版权

简易代码模块专栏收录该内容

14 篇文章 0 订阅

订阅专栏

如果前后端分离项目,加了拦截器,被拦截的就无法向下执行,就到不了mvc配置的解决跨域过滤器,
因此得找一个在拦截器之前执行的东西,就是filter,他是在执行servlet前执行的,也就是mvc的中央控制器dispathacherservlet之前,配的过滤器,拦截器都是在这玩意中整的,因此加个filter就可以在他之前


import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

/**
 * @author : Edward_wei
 * @data: 2021/6/19 15:46
 * @classNam: MyFilter
 * @description:
 * @kit:jdk-1.8
 */
@WebFilter("/*")
public class MyFilter implements Filter {
    @Override
    public void init(FilterConfig filterConfig) throws ServletException {

    }
    //由于mvc的拦截器在过滤器之前,拦截的请求到不了解决跨域的过滤器,而filter在拦截器之前,所有用filter解决跨域
    @Override
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        System.out.println("in");
        HttpServletRequest httpServletRequest = (HttpServletRequest) servletRequest;
        HttpServletResponse httpResponse = (HttpServletResponse) servletResponse;
        httpResponse.setHeader("Access-Control-Allow-Origin",httpServletRequest.getHeader("origin"));//不加第二个参数,解决不了
        httpResponse.setHeader("Access-Control-Allow-Methods", "*");
        httpResponse.setHeader("Access-Control-Max-Age", "3600");
        httpResponse.setHeader("Access-Control-Allow-Headers",
                "Origin, X-Requested-With, Content-Type, Accept, Connection, User-Agent, Cookie");
        httpResponse.setHeader("Access-Control-Allow-Credentials", "true");
        httpResponse.setHeader("Content-type", "application/json");
        httpResponse.setHeader("Cache-Control", "no-cache, must-revalidate");
        filterChain.doFilter(httpServletRequest, httpResponse);
    }

    @Override
    public void destroy() {

    }


}

用mvc配置个内置filter,执行在拦截器之前

package com.holy.cn.controller;

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.cors.CorsConfiguration;
import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
import org.springframework.web.filter.CorsFilter;

/**
 * @author : Edward_wei
 * @data: 2021/6/23 16:43
 * @classNam: CorsConfig
 * @description:
 * @kit:jdk-1.8
 */
@Configuration
public class CorsConfig {

    @Bean
    public  CorsFilter corsFilter(){
        CorsConfiguration corsConfiguration = new CorsConfiguration();
        corsConfiguration.addAllowedHeader("*");
        corsConfiguration.addAllowedOrigin("*");
        corsConfiguration.addAllowedMethod("*");
        corsConfiguration.setAllowCredentials(true);

        UrlBasedCorsConfigurationSource urlBasedCorsConfigurationSource = new UrlBasedCorsConfigurationSource();
        urlBasedCorsConfigurationSource.registerCorsConfiguration("/**",corsConfiguration);

        CorsFilter corsFilter = new CorsFilter(urlBasedCorsConfigurationSource);

        return corsFilter;

    }
}