Request header field x-xsrf-token is not allowed by Access-Control-Allow-Headers in preflight respon
设置下Access-Control-Allow-Headers
@Component
@WebFilter
public class CorsFilter implements Filter {private final static String SPLIT = ";";@Value("${roc.allow.origins:http://aa.aa.cn:8088}")private String allowOrigins ;private List<String> allows = null;@Overridepublic void init(FilterConfig filterConfig) throws ServletException {if (allowOrigins.contains(SPLIT)) {allows = Arrays.asList(allowOrigins.split(SPLIT).clone());} else {allows.add(allowOrigins);}}@Overridepublic void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {HttpServletResponse response = (HttpServletResponse) res;HttpServletRequest request = (HttpServletRequest) req;String origin = request.getHeader("Origin");if (allows.contains(origin)) {response.setHeader("Access-Control-Allow-Origin",origin);response.setHeader("Access-Control-Allow-Methods", "*");response.setHeader("Access-Control-Max-Age", "3600");response.setHeader("Access-Control-Allow-Headers", "DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,x-xsrf-token,x-csrf-token,If-Modified-Since,Cache-Control,Content-Type, X-Custom-Header, Access-Control-Expose-Headers, Token, Authorization");response.setHeader("Access-Control-Allow-Credentials", "true");response.setHeader("Access-Control-Max-Age", "3600");response.setHeader("Expires", "-1");response.setHeader("Cache-Control", "no-cache");response.setHeader("pragma", "no-cache");if ("OPTIONS".equals(request.getMethod())){response.setStatus(HttpStatus.SC_OK);return;}}chain.doFilter(req, res);}@Overridepublic void destroy() {}
}
Request header field x-xsrf-token is not allowed by Access-Control-Allow-Headers in preflight respon相关推荐
- Request header field token is not allowed by Access-Control-Allow-Headers in preflight response
之前开发vue项目时,需要在请求头里添加一个token字段,开发的时候都正常,等到部署到正式环境发现很多版本比较低的chorme浏览器都报错,错误如下: XMLHttpRequest cannot l ...
- 解决Request header field XXX is not allowed by access-control-allow-headers in preflight response
问题 Access to XMLHttpRequest at 'http://B.com/path/a' from origin 'http://A.com' has been blocked by ...
- 完美解决nginx跨域问题Request header field x-token is not allowed by Access-Control-Allow-Headers in prefligh
Access-Control-Allow-Headers 响应首部 Access-Control-Allow-Headers 用于 preflight request (预检请求)中,列出了将会在正式 ...
- Request header field Content-Type is not allowed by Access-Control-Allow-Headers跨域
跨域错误提示: XMLHttpRequest cannot load http://xxx.com. Request header field Content-Type is not allowed ...
- 解决:Request header field Content-Type is not allowed by Access-Control-Allow-Headers
前些天发现了一个巨牛的人工智能学习网站,通俗易懂,风趣幽默,忍不住分享一下给大家.点击跳转到教程. 1. 前端 vue 工程 post 请求后端接口,报错: Request header field ...
- axios.post请求出错:Request header field content-type is not allowed by Access-Control-Allow-Headers in……
axios.post请求出错:Request header field content-type is not allowed by Access-Control-Allow-Headers in-- ...
- Request header field content-type is not allowed by Access-Control-Allow-Headers in preflight respon
一.问题: 跨域请求中包含自定义header字段时,浏览器console报错. Request header field xfilesize is not allowed by Access-Cont ...
- Request header field xxx is not allowed by Access-Control-Allow-Headers in preflight respon
调试时发现低版本的WebView无法请求跨域接口 请求信息如下: Request Method:OPTIONS Status Code:200 OKAccess-Control-Allow-Heade ...
- Request header field token is not allowed by Access-Control-Allow-Headers in
前后端分离项目 后端接口做了跨域的处理 前端在header中传递了token,解决办法: @Overridepublic void doFilter(ServletRequest request, S ...
最新文章
- SSD成就了《扩散性百万亚瑟王》
- MinGW 与MSVC的区别
- 关于java多态中覆盖的理解
- N!-201308071627.txt
- 西门子上升沿指令_西门子SCL编程实例——霓虹灯顺序控制(DECO指令)
- 【caffe-Windows】mnist实例编译之model的使用-matlab
- Python学习笔记 ---第三章
- chrome删除 标题栏鼠标悬停提示网址
- 通过Nethogs查看服务器网卡流量情况
- 关于php使用fputcsv进行大数据的导出
- jQuery--捕获键盘敲击
- Android Studio 4.1一键生成代码Template
- 来,同学,坐下,谈谈对Dex文件的认识
- 人生苦短,我用Python,那么问题来了,普通人要学python吗?
- Android 高仿微信支付键盘
- oracle x kglob,x$kglob/x$kgltr 中library cache信息查看(结果同dump内容)
- 卷积神经网络(CNN)详细介绍及其原理详解
- win10 批量修改文件权限
- java tongpaiyu danliantiao_五年级语文第一学期词语表
- 名悦集团:下雪天怎么保养汽车?