关于SpringBoot跨域问题解决

三种解决办法

1.添加@CrossOrigin

@RestController
@CrossOrigin  //全部域名放行
@CrossOrigin("http:xxx//xxx/xxx/xxx")  //指定域名放行
@RequestMapping("/roles")
public class RoleController {

    @Autowired
    private RoleService roleService;

    @GetMapping
    public Result findAll() {

        return new Result(true,roleService.findAll());
    }

    @PostMapping
    public Result insert(@RequestBody(required = false) Role role) {

        return new Result(roleService.insert(role));
    }

    @PutMapping
    public Result update(@RequestBody Role role) {
        return new Result(roleService.updateByEntry(role));
    }
}

1.2更细的控制粒度

    @CrossOrigin  //指定方法放行
    @GetMapping
    public Result findAll() {

        return new Result(true,roleService.findAll());
    }

    @PostMapping
    public Result insert(@RequestBody(required = false) Role role) {

        return new Result(roleService.insert(role));
    }

2.定义配置类，添加@Configuration注解，实现WebMvcConfigurer接口，再重写addCorsMappings方法：

package com.yangho.config;

/**
 * @ClassName CorsConfig
 * @Description  跨域配置
 * @Author Yanghao2
 * @Date 2022/2/5 23:56
 * @Version V1.0
 */

/**
 2  * 跨域配置
 3  */

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.http.HttpHeaders;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;

@Configuration
  public class CorsConfig implements WebMvcConfigurer {
      @Bean
     public WebMvcConfigurer corsConfigurer() {
          return new WebMvcConfigurer() {
             @Override
             public void addCorsMappings(CorsRegistry registry) {
              registry.addMapping("/**").//添加映射路径
              allowedOrigins("*"). //允许跨域的域名，可以用*表示允许任何域名使用
              allowedMethods("*"). //允许任何方法（post、get等）
              allowedHeaders("*"). //允许任何请求头
              allowCredentials(true). //带上cookie信息
              exposedHeaders(HttpHeaders.SET_COOKIE).maxAge(3600L); //maxAge(3600)表明在3600秒内，不需要再发送预检验请求，可以缓存该结果
           }
};
            }
 }

3.定义跨域过滤器

// 跨域过滤器
@Component
public class CORSFilter implements Filter {
 
    @Override
    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
  //*号表示对所有请求都允许跨域访问
        HttpServletResponse res = (HttpServletResponse) response;
        res.addHeader("Access-Control-Allow-Credentials", "true");
        res.addHeader("Access-Control-Allow-Origin", "*");
        res.addHeader("Access-Control-Allow-Methods", "GET, POST, DELETE, PUT");
        res.addHeader("Access-Control-Allow-Headers", "Content-Type,X-CAF-Authorization-Token,sessionToken,X-TOKEN");
        if (((HttpServletRequest) request).getMethod().equals("OPTIONS")) {
            response.getWriter().println("Success");
            return;
        }
        chain.doFilter(request, response);
    }
 
    @Override
    public void destroy() {
 
    }
 
    @Override
    public void init(FilterConfig filterConfig) throws ServletException {
 
    }
}

注册过滤器

@Configuration
public class CorsConfig {
 
    @Bean
    public CorsFilter corsFilter() {
        CorsConfiguration corsConfiguration = new CorsConfiguration();
        corsConfiguration.addAllowedOrigin("*");
        corsConfiguration.addAllowedHeader("*");
        corsConfiguration.addAllowedMethod("*");
        corsConfiguration.setAllowCredentials(true);
        UrlBasedCorsConfigurationSource urlBasedCorsConfigurationSource = new UrlBasedCorsConfigurationSource();
        urlBasedCorsConfigurationSource.registerCorsConfiguration("/**", corsConfiguration);
        return new CorsFilter(urlBasedCorsConfigurationSource);
    }
 
}

参考的大佬博客https://cloud.tencent.com/developer/article/1924258