转自:跨域Ajax请求时是否带Cookie的设置 http://blog.csdn.net/wzl002/article/details/51441704
服务器中 需要打开 allowCredentials true//允许Cookie跨域,在做登录校验的时候有用
@Bean
public WebMvcConfigurer corsConfigurer() {
return new WebMvcConfigurerAdapter() {
@Override
public void addCorsMappings(CorsRegistry registry) {
//全局支持CORS(跨源请求)
registry.addMapping("/**")
//允许任意来源
.allowedOrigins("*")
.allowedMethods("PUT", "DELETE", "GET", "POST")
.allowedHeaders("*")
.exposedHeaders("access-control-allow-headers",
"access-control-allow-methods",
"access-control-allow-origin",
"access-control-max-age",
"X-Frame-Options")
.allowCredentials(CrossOrigin.DEFAULT_ALLOW_CREDENTIALS)//允许Cookie跨域,在做登录校验的时候有用
.maxAge(3600);
}
};
}
在ajax中需要添加
xhrFields: {
withCredentials: true
},