應用場景:
所有的微服務是通過網關這個入口,在和前端對接口時,必然設計到有關跨域的問題。關於服務端跨域有很多方案,可以加注解(指定具體的路徑允許跨域),也可以統一配置。
另外如果不在網關入口這配置,勢必會造成一個很大的影響,那就是前端通過網關入口調用其它微服務,通常會出現如下錯誤:
Access to XMLHttpRequest at 'xxx' from origin 'xxx' has been been blocked by CORS policy
核心代碼(解決方案):
import org.springframework.context.annotation.Bean; import org.springframework.context.annotation.Configuration; import org.springframework.web.cors.CorsConfiguration; import org.springframework.web.cors.reactive.CorsWebFilter; import org.springframework.web.cors.reactive.UrlBasedCorsConfigurationSource; import org.springframework.web.util.pattern.PathPatternParser; @Configuration public class CorsConfig { @Bean public CorsWebFilter corsFilter() { UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource(new PathPatternParser()); source.registerCorsConfiguration("/**", buildConfig()); return new CorsWebFilter(source); } private CorsConfiguration buildConfig() { CorsConfiguration corsConfiguration = new CorsConfiguration(); //在生產環境上最好指定域名,以免產生跨域安全問題 corsConfiguration.addAllowedOrigin("*"); corsConfiguration.addAllowedHeader("*"); corsConfiguration.addAllowedMethod("*"); return corsConfiguration; } }
SpirngCloud GateWay解決方案:
Spring Cloud Gateway – Cors解決跨域問題
注解解決方案:
java后端解決跨域問題(過濾器或者注解)