SpringBoot 配置跨域異常:java.lang.IllegalArgumentException
1. 問題描述:
SpringBoot 配置跨域時出現如下異常:
java.lang.IllegalArgumentException: When allowCredentials is true, allowedOrigins cannot contain the special value "*" since that cannot be set on the "Access-Control-Allow-Origin" response header. To allow credentials to a set of origins, list them explicitly or consider using "allowedOriginPatterns" instead.
2. 問題原因:
SpringBoot升級2.4.0+之后,跨域配置中的.allowedOrigins不再可用
3. 解決辦法:
將配置中的.allowedOrigins替換成.allowedOriginPatterns即可。
4. 不同版本配置對比:
SpringBoot 2.0.0<=version<2.4.0
@Configuration
public class CorsConfig implements WebMvcConfigurer {
@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**")
.allowedOrigins("*")
.allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
.allowCredentials(true)
.maxAge(3600)
.allowedHeaders("*");
}
}
SpringBoot >= 2.4.0
@Configuration
public class CorsConfig implements WebMvcConfigurer {
@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**")
.allowedOriginPatterns("*")
.allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
.allowCredentials(true)
.maxAge(3600)
.allowedHeaders("*");
}
}