一種方式:
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletResponse;
/**
* 解決跨域問題
*/
public class KuaYuFilter implements Filter {
public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {
HttpServletResponse response = (HttpServletResponse) res;
response.setHeader("Access-Control-Allow-Origin", "http://127.0.0.1:8080");
response.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
response.setHeader("Access-Control-Max-Age", "3600");
response.setHeader("Access-Control-Allow-Headers", "content-type, x-requested-with");
response.setHeader("Access-Control-Expose-Headers", "Authorization");
response.setHeader("Access-Control-Allow-Credentials", "true");
chain.doFilter(req, res);
}
public void init(FilterConfig filterConfig) {}
public void destroy() {}
}
web.xml文件添加信息
<filter>
<filter-name>accoseFilter</filter-name>
<filter-class>com.sh.cloudstageapi.base.SimpleCORSFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>accoseFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
另一種方式:
import java.io.IOException;
import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.web.filter.OncePerRequestFilter;
public class CorsRequestFilter extends OncePerRequestFilter {
private final Logger logger = LoggerFactory.getLogger(getClass());
private String supportedMethods = null;
private String supportedMaxAge = null;
private final String CHECK_FILE = "ver.txt";
public void setSupportedMethods(String supportedMethods) {
this.supportedMethods = supportedMethods;
}
public void setSupportedMaxAge(String supportedMaxAge) {
this.supportedMaxAge = supportedMaxAge;
}
@Override
public void destroy() {
// TODO Auto-generated method stub
}
@Override
protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
throws ServletException, IOException {
String url = request.getRequestURI();
if(url.endsWith(CHECK_FILE)) {
return;
}
String originHeader = request.getHeader("Origin");
String requestHeaders = request.getHeader("Access-Control-Request-Headers");
if(this.logger.isDebugEnabled()) {
this.logger.debug("CorsRequestFilter ipAddress:" + request.getRemoteAddr());
this.logger.debug("request_param:" + String.format(
"Access-Control-Allow-Origin:%s,Access-Control-Allow-Headers:%s", originHeader, requestHeaders));
}
response.addHeader("Access-Control-Allow-Origin", originHeader);
response.addHeader("Access-Control-Allow-Methods", supportedMethods);
response.addHeader("Access-Control-Allow-Headers", requestHeaders);
response.addHeader("Access-Control-Max-Age", supportedMaxAge);
response.addHeader("Access-Control-Allow-Credentials", "true");
response.addHeader("X-Content-Type-Options", "nosniff");
if (!"OPTIONS".equals(request.getMethod())) {
filterChain.doFilter(request, response);
}
if(this.logger.isDebugEnabled()) {
this.logger.debug("CorsRequestFilter end.");
}
}
}
web.xml文件添加:
<!-- 跨域支持 -->
<filter>
<filter-name>corsFilter</filter-name>
<filter-class>com.sh.common.filter.CorsRequestFilter</filter-class>
<init-param>
<param-name>supportedMethods</param-name>
<param-value>GET, POST, HEAD, PUT, DELETE</param-value>
</init-param>
<init-param>
<param-name>supportedMaxAge</param-name>
<param-value>2000</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>corsFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>