diff --git a/cloud-gateway/src/main/java/com/muyu/gateway/config/CorsConfig.java b/cloud-gateway/src/main/java/com/muyu/gateway/config/CorsConfig.java
new file mode 100644
index 0000000..dfb020d
--- /dev/null
+++ b/cloud-gateway/src/main/java/com/muyu/gateway/config/CorsConfig.java
@@ -0,0 +1,76 @@
+package com.muyu.gateway.config;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.HttpMethod;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.server.reactive.ServerHttpRequest;
+import org.springframework.http.server.reactive.ServerHttpResponse;
+import org.springframework.web.cors.reactive.CorsUtils;
+import org.springframework.web.server.ServerWebExchange;
+import org.springframework.web.server.WebFilter;
+import org.springframework.web.server.WebFilterChain;
+import reactor.core.publisher.Mono;
+
+/**
+ * 跨域设置
+ *
+ * @author muyu
+ */
+@Configuration
+public class CorsConfig {
+
+    /**
+     * 这里为支持的请求头，如果有自定义的header字段请自己添加
+     */
+    private static final String ALLOWED_HEADERS = "X-Requested-With, Content-Type, Authorization, credential, X-XSRF-TOKEN, token, Admin-Token, App-Token";
+
+    private static final String ALLOWED_METHODS = "GET,POST,PUT,DELETE,OPTIONS,HEAD";
+
+    private static final String ALLOWED_ORIGIN = "*";
+
+    private static final String ALLOWED_EXPOSE = "*";
+
+    private static final String MAX_AGE = "18000L";
+
+    @Bean
+    public WebFilter corsFilter() {
+
+        return (ServerWebExchange ctx, WebFilterChain chain) -> {
+
+            ServerHttpRequest request = ctx.getRequest();
+
+            if (CorsUtils.isCorsRequest(request)) {
+
+                ServerHttpResponse response = ctx.getResponse();
+
+                HttpHeaders headers = response.getHeaders();
+
+                headers.add("Access-Control-Allow-Headers", ALLOWED_HEADERS);
+
+                headers.add("Access-Control-Allow-Methods", ALLOWED_METHODS);
+
+                headers.add("Access-Control-Allow-Origin", ALLOWED_ORIGIN);
+
+                headers.add("Access-Control-Expose-Headers", ALLOWED_EXPOSE);
+
+                headers.add("Access-Control-Max-Age", MAX_AGE);
+
+                headers.add("Access-Control-Allow-Credentials", "true");
+
+                if (request.getMethod() == HttpMethod.OPTIONS) {
+
+                    response.setStatusCode(HttpStatus.OK);
+
+                    return Mono.empty();
+
+                }
+
+            }
+            return chain.filter(ctx);
+        };
+
+    }
+
+}
\ No newline at end of file
diff --git a/cloud-modules/cloud-modules-system/src/main/resources/bootstrap.yml b/cloud-modules/cloud-modules-system/src/main/resources/bootstrap.yml
index f23e0b2..1aa95bc 100644
--- a/cloud-modules/cloud-modules-system/src/main/resources/bootstrap.yml
+++ b/cloud-modules/cloud-modules-system/src/main/resources/bootstrap.yml
@@ -8,13 +8,8 @@ nacos:
   user-name: nacos
   password: nacos
   namespace: muyu-cloud
-# SPRING_AMQP_DESERIALIZATION_TRUST_ALL=true spring.amqp.deserialization.trust.all
 # Spring
 spring:
-  amqp:
-    deserialization:
-      trust:
-        all: true
   main:
     allow-bean-definition-overriding: true
   application: