SpringBoot entry to proficient-AJAX cross-domain CorsFilter based on filter regularization

Others 2021-01-26 07:45:02 views: null

Setup configuration issues

cors.allowedOrigins= http://localhost:4200, https://.*subdomain\\.domain\\.com

Based on filter

import org.springframework.beans.factory.annotation.Value;
import org.springframework.stereotype.Component;

import javax.servlet.*;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;
import java.util.regex.Matcher;
import java.util.regex.Pattern;

@Component
public class CORSFilter implements Filter {
    @Value("${cors.allowedOrigins}")
    private String[] allowedOrigins;

    @Override
    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
            throws IOException, ServletException {

        HttpServletRequest req = (HttpServletRequest) request;
        String requestOrigin = req.getHeader("Origin");

        List<Pattern> allowedOriginsRegex = new ArrayList<>();

        for(String origin: allowedOrigins){
            allowedOriginsRegex.add(Pattern.compile(origin));
        }

        if(requestOrigin != null){

            for(Pattern pattern : allowedOriginsRegex){
                Matcher matcher = pattern.matcher(requestOrigin);
                if(matcher.matches()){
                    HttpServletResponse res = (HttpServletResponse) response;
                    res.addHeader("Access-Control-Allow-Credentials", "true");
                    res.addHeader("Access-Control-Allow-Origin", matcher.group(0));
                    res.addHeader("Access-Control-Allow-Methods", "GET, POST");
                    res.addHeader("Access-Control-Allow-Headers", "Content-Type,X-CAF-Authorization-Token,sessionToken,X-TOKEN");
                    if (((HttpServletRequest) request).getMethod().equals("OPTIONS")) {
                        response.getWriter().println("ok");
                        return;
                    }
                };
            }
        }

        chain.doFilter(request, response);
    }

    @Override
    public void destroy() {
    }
    @Override
    public void init(FilterConfig filterConfig) throws ServletException {
    }
}

Guess you like

Origin blog.csdn.net/wxb880114/article/details/109208804
Recommended
Ranking
Synchronized reentrant lock Analysis
Icons Cube4Nano professional external sound card equipment rack, audio and video conference playback and recording settings
.Gitignore common template
[java]-Algorithms and Data Structures-Chapter 6-Recursion
JavaWeb-case student information
Python: Convert decimal numbers to binary, octal, and hexadecimal numbers
ASP.NET MVC4 project to build (a)
Use Hexo to build your own blog
Editor fast bond
An article takes you to use SpringBoot to implement timing tasks
Daily
More
2024-05-30(0)
2024-05-29(1)
2024-05-28(1)
2024-05-27(1)
2024-05-26(0)
2024-05-25(3)
2024-05-24(12)
2024-05-23(35)
2024-05-22(9)
2024-05-21(35)

Code World

© 2018 codetd.com