From 39c4fda42b497cfebe19ceaed61a8f65bfce3b4c Mon Sep 17 00:00:00 2001 From: FrozenWatermelon Date: Mon, 29 Nov 2021 13:24:40 +0800 Subject: [PATCH] =?UTF-8?q?=E8=B7=A8=E5=9F=9F?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../yami/shop/security/config/CorsConfig.java | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 yami-shop-security/src/main/java/com/yami/shop/security/config/CorsConfig.java diff --git a/yami-shop-security/src/main/java/com/yami/shop/security/config/CorsConfig.java b/yami-shop-security/src/main/java/com/yami/shop/security/config/CorsConfig.java new file mode 100644 index 0000000..0534790 --- /dev/null +++ b/yami-shop-security/src/main/java/com/yami/shop/security/config/CorsConfig.java @@ -0,0 +1,36 @@ +package com.yami.shop.security.config; + +import org.springframework.context.annotation.Bean; +import org.springframework.context.annotation.Configuration; +import org.springframework.web.cors.CorsConfiguration; +import org.springframework.web.cors.CorsConfigurationSource; +import org.springframework.web.cors.UrlBasedCorsConfigurationSource; + +/** + * @author yami + */ +@Configuration +public class CorsConfig { + + /** + * 修改为添加而不是设置,* 最好生产环境改为实际的需要, 这里可以用多个add配置多个域名 + * configuration.addAllowedOrigin("http://localhost:8080"); + * configuration.addAllowedOrigin("http://192.168.1.6:8080"); + * @return CorsConfigurationSource + */ + @Bean + public CorsConfigurationSource corsConfigurationSource() { + CorsConfiguration configuration = new CorsConfiguration(); +// configuration.addAllowedOriginPattern("*"); + configuration.addAllowedOrigin("*"); + //修改为添加而不是设置 + configuration.addAllowedMethod("*"); + //这里很重要,起码需要允许 Access-Control-Allow-Origin + configuration.addAllowedHeader("*"); + configuration.setAllowCredentials(true); + configuration.setMaxAge(3600 * 24L); + UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource(); + source.registerCorsConfiguration("/**", configuration); + return source; + } +}