Web开发｜CROS跨域请求

合集 - 全栈开发(8)

1.全栈开发知识点｜那些authentication之类的名词2023-06-192.Google Cloud ｜Web开发2023-06-243.Google Cloud 的存储2023-06-244.Java｜Spring Boot 一些名词和常用概念（1）2023-07-025.Web开发｜SpringBoot-Bean2023-07-08

6.Web开发｜CROS跨域请求2023-07-08

7.Web开发-数据库｜Guide to JPA with Hibernate - Relationship Mapping2023-07-118.IDEA Tomcat配置｜Mac OS2023-07-26

收起

https://developer.mozilla.org/en-US/docs/Glossary/Preflight_request

import org.springframework.core.Ordered;
import org.springframework.core.annotation.Order;
import org.springframework.stereotype.Component;
import org.springframework.web.filter.OncePerRequestFilter;

import javax.servlet.*;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

@Component
@Order(Ordered.HIGHEST_PRECEDENCE)
public class CorsFilter extends OncePerRequestFilter {

    @Override
    protected void doFilterInternal(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, FilterChain filterChain) throws ServletException, IOException {
        httpServletResponse.setHeader("Access-Control-Allow-Origin", "*");
        httpServletResponse.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
        httpServletResponse.setHeader("Access-Control-Allow-Headers", "Authorization, Content-Type");

        if ("OPTIONS".equalsIgnoreCase(httpServletRequest.getMethod())) {
            httpServletResponse.setStatus(HttpServletResponse.SC_OK);
        } else {
            filterChain.doFilter(httpServletRequest, httpServletResponse);
        }
    }
}