<
filter
>
<
filter-name
>CORS</
filter-name
>
<
filter-class
>com.thetransactioncompany.cors.CORSFilter</
filter-class
>
<
init-param
>
<
param-name
>cors.allowOrigin</
param-name
>
<
param-value
>*</
param-value
>
<!--
// 允许访问的网站,多个时用逗号分开;*代表允许所有
<param-value>http://www.baidu.con, http://www.jd.com</param-value>
-->
</
init-param
>
<
init-param
>
<
param-name
>cors.supportedMethods</
param-name
>
<
param-value
>GET, POST, HEAD, PUT, DELETE</
param-value
>
</
init-param
>
<
init-param
>
<
param-name
>cors.supportedHeaders</
param-name
>
<
param-value
>Accept, Origin, X-Requested-With, Content-Type, Last-Modified</
param-value
>
</
init-param
>
<
init-param
>
<
param-name
>cors.exposedHeaders</
param-name
>
<
param-value
>Set-Cookie</
param-value
>
</
init-param
>
<
init-param
>
<
param-name
>cors.supportsCredentials</
param-name
>
<
param-value
>true</
param-value
>
</
init-param
>
</
filter
>
<
filter-mapping
>
<
filter-name
>CORS</
filter-name
>
<
url-pattern
>/*</
url-pattern
>
</
filter-mapping
>
注:这个方法已亲测。通过