最近由于需要写一个登陆及分页接口, 涉及到跨域的问题,相关过滤器代码贴出来留着以后用
package first;
import java.io.IOException; import javax.servlet.Filter; import javax.servlet.FilterChain; import javax.servlet.FilterConfig; import javax.servlet.ServletException; import javax.servlet.ServletRequest; import javax.servlet.ServletResponse; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; public class HeadersCORSFilter implements Filter { public void init(FilterConfig filterConfig) throws ServletException { } @Override public void doFilter(ServletRequest request, ServletResponse servletResponse, FilterChain chain) throws IOException, ServletException { HttpServletRequest request2 = (HttpServletRequest)request; HttpServletResponse response = (HttpServletResponse) servletResponse; request.setCharacterEncoding("UTF-8"); response.setCharacterEncoding("UTF-8");response.setContentType("application/json;charset=UTF-8");
//response.setHeader("Access-Control-Allow-Origin", ///""*""); //一开始这样设置,但是前端的新框架请求一直不支持,无奈使用下面的方式指定
response.setHeader("Access-Control-Allow-Origin", request2.getHeader("origin")); //允许跨域 response.setHeader("Access-Control-Allow-Credentials", "true"); response.setHeader("Access-Control-Allow-Methods", "POST"); response.setHeader("Access-Control-Max-Age", "3600"); response.setHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept, Authorization"); chain.doFilter(request, servletResponse); } @Override public void destroy() { // TODO Auto-generated method stub } }
