Java中SSM框架解决跨域请求问题
作者:UserGuan
还在为前后端分离项目中的跨域问题头疼吗?本文详细介绍了Java Spring Boot中解决跨域请求的四种实用方法,包括@CrossOrigin注解、SpringMVC配置、cors-filter过滤器以及自定义过滤器,让你轻松搞定CORS跨域访问
方法一
@CrossOrigin注解的方法,只能作用在一个Controller层
直接在Controller类或方法前加上@CrossOrigin注解即可允许所有ip跨域访问
加在Controller类上表示该Controller的所有方法都支持跨域
加在Controller中的方法上表示仅该方法支持跨域
@CrossOrigin // 允许所有ip跨域 @CrossOrigin(origins = "192.168.0.1") //只允许指定ip跨域


方法二
在SpringMVC配置文件spring-context.xml中配置跨域请求
<!-- 接口跨域配置 --> <mvc:cors> <!-- allowed-methods="*" --> <!-- 表示所有请求都有效 --> <mvc:mapping path="/**" allowed-origins="*" allowed-methods="POST, GET, OPTIONS, DELETE, PUT" allowed-headers="Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With" allow-credentials="true" /> </mvc:cors>

方法三
使用cors-filter包配置跨域
1、引入pom.xml依赖
<!-- cors-filter包:配置跨域 --> <dependency> <groupId>com.thetransactioncompany</groupId> <artifactId>cors-filter</artifactId> <version>2.5</version> </dependency>
2、在web.xml文件中注册Filter跨域过滤器
<!-- 配置跨域过滤器 --> <filter> <filter-name>CORS</filter-name> <filter-class>com.thetransactioncompany.cors.CORSFilter</filter-class> <init-param> <param-name>cors.allowOrigin</param-name> <param-value>*</param-value> </init-param> <init-param> <param-name>cors.supportedMethods</param-name> <!-- <param-value>*</param-value> --> <!-- 表示所有请求都有效 --> <param-value>GET, POST, HEAD, PUT, DELETE</param-value> </init-param> <init-param> <param-name>cors.supportedHeaders</param-name> <param-value>Accept, Origin, X-Requested-With, Content-Type, Last-Modified</param-value> </init-param> <init-param> <param-name>cors.exposedHeaders</param-name> <param-value>Set-Cookie</param-value> </init-param> <init-param> <param-name>cors.supportsCredentials</param-name> <param-value>true</param-value> </init-param> </filter> <filter-mapping> <filter-name>CORS</filter-name> <url-pattern>/*</url-pattern> </filter-mapping>
方法四
自己写CrossingFilter跨域过滤器
1、写CrossingFilter过滤器类,实现(Interfaces)本地Apache Tomcat的Filter接口
package com.pmsapi.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class CrossingFilter implements Filter {
private boolean isCross = false;
@Override
public void destroy() {
isCross = false;
}
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
if (isCross) {
HttpServletRequest httpServletRequest = (HttpServletRequest) request;
HttpServletResponse httpServletResponse = (HttpServletResponse) response;
System.out.println("拦截请求: " + httpServletRequest.getServletPath());
httpServletResponse.setHeader("Access-Control-Allow-Origin", "*");
// httpServletResponse.setHeader("Access-Control-Allow-Methods", "*"); // 表示所有请求都有效
httpServletResponse.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
httpServletResponse.setHeader("Access-Control-Max-Age", "0");
httpServletResponse.setHeader("Access-Control-Allow-Headers",
"Origin, No-Cache, X-Requested-With, If-Modified-Since, Pragma, Last-Modified, Cache-Control, Expires, Content-Type, X-E4M-With,userId,token");
httpServletResponse.setHeader("Access-Control-Allow-Credentials", "true");
httpServletResponse.setHeader("XDomainRequestAllowed", "1");
}
chain.doFilter(request, response);
}
@Override
public void init(FilterConfig filterConfig) throws ServletException {
String isCrossStr = filterConfig.getInitParameter("IsCross");
isCross = isCrossStr.equals("true") ? true : false;
System.out.println("跨域开启状态:" + isCrossStr);
}
}2、在web.xml文件中注册CrossingFilter过滤器
<!-- 配置跨域过滤器 --> <filter> <filter-name>CrossingFilter</filter-name> <filter-class>com.pmsapi.filter.CrossingFilter</filter-class> <init-param> <param-name>IsCross</param-name> <param-value>true</param-value> </init-param> </filter> <filter-mapping> <filter-name>CrossingFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping>
总结
以上为个人经验,希望能给大家一个参考,也希望大家多多支持脚本之家。
