tomcat - 与tomcat服务器的跨源资源共享

标签 tomcat cross-domain cors

我想允许对我的服务器的跨源请求。 我找到了以下过滤器代码:

public class CorsFilter implements Filter {
  // For security reasons set this regex to an appropriate value
  // example: ".*example\\.com"
  private static final String ALLOWED_DOMAINS_REGEXP = ".*";

  public void doFilter(ServletRequest servletRequest,
      ServletResponse servletResponse, FilterChain filterChain)
      throws IOException, ServletException {

    HttpServletRequest req = (HttpServletRequest) servletRequest;
    HttpServletResponse resp = (HttpServletResponse) servletResponse;

    String origin = req.getHeader("Origin");

    if (origin != null && origin.matches(ALLOWED_DOMAINS_REGEXP)) {
          System.out.println("CorsFilter:: origin matches, yey");
      resp.addHeader("Access-Control-Allow-Origin", origin);

      if ("options".equalsIgnoreCase(req.getMethod())) {

        resp.setHeader("Allow", "GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS");
        if (origin != null) {
          String headers = req.getHeader("Access-Control-Request-Headers");
          String method = req.getHeader("Access-Control-Request-Method");
          resp.addHeader("Access-Control-Allow-Methods", method);
          resp.addHeader("Access-Control-Allow-Headers", headers);
          resp.setContentType("text/plain");
        }
        resp.getWriter().flush();
        return;
      }
    }

    // Fix ios6 caching post requests
    if ("post".equalsIgnoreCase(req.getMethod())) {
      resp.addHeader("Cache-Control", "no-cache");
    }

    if (filterChain != null) {
      filterChain.doFilter(req, resp);
    }
  }

  @Override public void destroy() {}
  @Override public void init(FilterConfig arg0) throws ServletException {}
}

似乎只有在第一个 OPTIONS 请求出现时它才会执行任何操作。但是,在我的例子中,我没有看到任何 OPTIONS 请求,只有 GET 请求。我错过了什么吗?解决方案是什么?

最佳答案

从 Tomcat 7.0.41 开始,您可以通过 built-in filter 控制 CORS 行为.

几乎您唯一需要做的就是编辑 CATALINA_HOME/conf 中的全局 web.xml 并添加过滤器定义:

     <!-- ================== Built In Filter Definitions ===================== -->

      ...

     <filter>
       <filter-name>CorsFilter</filter-name>
       <filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
     </filter>
     <filter-mapping>
       <filter-name>CorsFilter</filter-name>
       <url-pattern>/*</url-pattern>
     </filter-mapping>

    <!-- ==================== Built In Filter Mappings ====================== -->

关于tomcat - 与tomcat服务器的跨源资源共享,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/15910554/

上一篇:apache - 日志未加载到新的 catalina.out 文件中

下一篇:java - Web服务器与应用服务器通信

相关文章:

apache - 如何将工件从 Azure devops 部署到 Apache Tomcat?

tomcat - JSF 2.3 无法支持 Tomcat 9 的 WebSocket

java - 谷歌分析 : Connect acquisition data with server side reporting

javascript - 获取 api 预检请求失败

javascript - AWS SimpleDB Javascript SDK 错误

spring - 带有 Proxypass 和 Spring Security 的 Apache

java - Bigbluebutton bbb-demo 工作而 bbb 不工作

javascript - 无法访问维基数据 API

javascript - 跨页面异步通信

javascript - 响应为404如何使用Service Worker缓存跨域资源?

©2024 IT工具网  联系我们