feat():增加跨域请求配置,默认允许所有跨域信息
dongzeliang
parent
347a329b0a
commit
443667ef04
|
|
@ -0,0 +1,76 @@
|
|||
package com.muyu.gateway.config;
|
||||
|
||||
import org.springframework.context.annotation.Bean;
|
||||
import org.springframework.context.annotation.Configuration;
|
||||
import org.springframework.http.HttpHeaders;
|
||||
import org.springframework.http.HttpMethod;
|
||||
import org.springframework.http.HttpStatus;
|
||||
import org.springframework.http.server.reactive.ServerHttpRequest;
|
||||
import org.springframework.http.server.reactive.ServerHttpResponse;
|
||||
import org.springframework.web.cors.reactive.CorsUtils;
|
||||
import org.springframework.web.server.ServerWebExchange;
|
||||
import org.springframework.web.server.WebFilter;
|
||||
import org.springframework.web.server.WebFilterChain;
|
||||
import reactor.core.publisher.Mono;
|
||||
|
||||
/**
|
||||
* 跨域设置
|
||||
*
|
||||
* @author muyu
|
||||
*/
|
||||
@Configuration
|
||||
public class CorsConfig {
|
||||
|
||||
/**
|
||||
* 这里为支持的请求头,如果有自定义的header字段请自己添加
|
||||
*/
|
||||
private static final String ALLOWED_HEADERS = "X-Requested-With, Content-Type, Authorization, credential, X-XSRF-TOKEN, token, Admin-Token, App-Token";
|
||||
|
||||
private static final String ALLOWED_METHODS = "GET,POST,PUT,DELETE,OPTIONS,HEAD";
|
||||
|
||||
private static final String ALLOWED_ORIGIN = "*";
|
||||
|
||||
private static final String ALLOWED_EXPOSE = "*";
|
||||
|
||||
private static final String MAX_AGE = "18000L";
|
||||
|
||||
@Bean
|
||||
public WebFilter corsFilter() {
|
||||
|
||||
return (ServerWebExchange ctx, WebFilterChain chain) -> {
|
||||
|
||||
ServerHttpRequest request = ctx.getRequest();
|
||||
|
||||
if (CorsUtils.isCorsRequest(request)) {
|
||||
|
||||
ServerHttpResponse response = ctx.getResponse();
|
||||
|
||||
HttpHeaders headers = response.getHeaders();
|
||||
|
||||
headers.add("Access-Control-Allow-Headers", ALLOWED_HEADERS);
|
||||
|
||||
headers.add("Access-Control-Allow-Methods", ALLOWED_METHODS);
|
||||
|
||||
headers.add("Access-Control-Allow-Origin", ALLOWED_ORIGIN);
|
||||
|
||||
headers.add("Access-Control-Expose-Headers", ALLOWED_EXPOSE);
|
||||
|
||||
headers.add("Access-Control-Max-Age", MAX_AGE);
|
||||
|
||||
headers.add("Access-Control-Allow-Credentials", "true");
|
||||
|
||||
if (request.getMethod() == HttpMethod.OPTIONS) {
|
||||
|
||||
response.setStatusCode(HttpStatus.OK);
|
||||
|
||||
return Mono.empty();
|
||||
|
||||
}
|
||||
|
||||
}
|
||||
return chain.filter(ctx);
|
||||
};
|
||||
|
||||
}
|
||||
|
||||
}
|
||||
|
|
@ -8,13 +8,8 @@ nacos:
|
|||
user-name: nacos
|
||||
password: nacos
|
||||
namespace: muyu-cloud
|
||||
# SPRING_AMQP_DESERIALIZATION_TRUST_ALL=true spring.amqp.deserialization.trust.all
|
||||
# Spring
|
||||
spring:
|
||||
amqp:
|
||||
deserialization:
|
||||
trust:
|
||||
all: true
|
||||
main:
|
||||
allow-bean-definition-overriding: true
|
||||
application:
|
||||
|
|
|
|||
Loading…
Reference in New Issue