不多逼逼,直接贴代码,前端所有请求头都放在headers里面就行
@Component
public class CorsFilter {
//这里是前端请求头,那个跨域就添加到这里就行了
private static final String headers = "User-Agent,Cache-Control,Content-type,Date,Server,withCredentials," +
"appversion";
@Override
public void init(FilterConfig filterConfig)
throws ServletException {
}
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
HttpServletResponse httpServletResponse = (HttpServletResponse) response;
httpServletResponse.setHeader("Access-Control-Allow-Origin", "*");
httpServletResponse.setHeader("Access-Control-Allow-Headers", headers);
httpServletResponse.setHeader("Access-Control-Allow-Credentials", "true");
httpServletResponse.setHeader("Access-Control-Allow-Methods",
"GET, POST, PUT, DELETE, OPTIONS, HEAD");
httpServletResponse.setHeader("Access-Control-Max-Age", "3600");
httpServletResponse.setHeader("Access-Control-Expose-Headers", "usertoken");
httpServletResponse.setHeader("Access-Control-Request-Headers", "usertoken");
httpServletResponse.setHeader("Expires", "-1");
httpServletResponse.setHeader("Cache-Control", "no-cache");
httpServletResponse.setHeader("pragma", "no-cache");
ServletRequest requestWrapper = null;
if (request instanceof HttpServletRequest) {
requestWrapper = new RequestWrapper((HttpServletRequest) request);
}
if (null == requestWrapper) {
chain.doFilter(request, response);
} else {
chain.doFilter(requestWrapper, response);
}
}
@Override
public void destroy() {
}
}