Talk about, before and after the separation brought about cross-domain access and cookie problem - Code World

Talk about, before and after the separation brought about cross-domain access and cookie problem

Others 2019-11-13 10:36:18 views: null

Before separation before and after the talk, let's look at what is around one. When we use when javaweb development site eventually we render jsp or springthymeleaf. Our page is actually under WEB-INFO or templates. When a user requests our xxx page resources are not really the requested page, but processed through our controller, after generating modelAndView, in view resolver to find the final data into view, and the view through the response and only then streamed to the client. in this development environment, we requested web page is actually in the container, this is the natural domain access.

If we move out of the entire html file, then visit our controller via ajax mode, then controller and html is not in one environment, it creates cross-domain access. In generating cross-domain access, the browser is requesting the order 1 options to initiate a type of request to the server, the request is sent to the server doubt, you will allow me to access it? this question contains the conditions there, the client request header, client address, client requests mode, and so on. If the server allows clients of these conditions, then tell the client browser, you can send a request for real this time the browser will send the actual request.

So then we look at the server configuration, which is the rule of the stack.

It is configured so foolproof, the premise is that your client does not pass cookie.

Do javaweb developed friends all know, java for each client in a session. The session is based on a cookie JSESSION be screened identity.

If the project is around one, each request will bring the default cookie, but if it is before and after the separation does not always carry the cookie. Then we need to be configured on the client side

I used here is axios plug

Then each will carry the cookie, but that did not end. If the client wants to carry the cookie, then the server

You must explicitly specify the release of the client domain name. Actually, this is a protective measure, imagine, if the server allows each strange client access, so if there are bad guys to carry large amounts cookie carry out his service by the end, then how.

At this point, before and after the separation caused by cross-domain cookie access and carry the problem to get.

Guess you like

Origin www.cnblogs.com/zumengjie/p/11846953.html

Talk about, before and after the separation brought about cross-domain access and cookie problem

SpringBoot learning before and after (xvi) the end of the separation achieve cross-domain access (CORS)

Solve problems before and after the separation of the front end fool cross-domain access

Two ways to end cross-domain problem solving before and after separation

Simple talk about what is cross-domain

About cross-domain cookie, no problem in the code, the browser set-cookie display the content, but the browser did not write cookie (refresh no cookie)

Talk about some understanding of cross-domain (cross-origin)

MySQL index problem about the condition before and after or

Talk about XMLHttpRequest's Ajax and Cross-domain Issues

Talk about the separation of computing and storage

Talk about the separation of computing and storage

Talk about the separation of computing and storage

Talk about the separation of computing and storage

"About the fact that after I set up cross-domain resource sharing, it is still cross-domain"

Talk about access to information

About the problem of Angular cross-domain request carrying cookies

Springboot vue.js html cross-domain permissions before and after separation Activiti6 shiro

Springboot project vue.js html source code before and after the separation of cross-domain privilege shiro

Under cross-domain issues before and after the end of the separation and CSRF attacks

About cookie is a problem

About cookies cross-domain

React solves the problem of unification of multiple modifications brought about by setState asynchronous and no change in immediate use after modification

[Front-end technology] Talk about your understanding of cross-domain

Vue summary of the study --- cross-domain issues before and after the end of the separation mode to solve the Vue project development environment

windows10 style springboot vue.js html cross-domain integration framework of the project before and after the separation activiti source

springcloud Micro Services Distributed Activiti6 workflow vue.js html cross-domain before and after separation

OA office system Springboot Activiti6 workflow integrated code generator vue.js before and after separation of cross-domain

Talk about the domain and entity

Solution to the problem of ajax cross-domain with cookie

Talk about the parameters of the problem DrawMeshInstancedIndirect

Recommended

Ranking

Reason Codes enhanced accounting documents

The first test case appium

Force command and dispatch emergency communication plan

Interview - What is concurrent programming

21 classic Python interview questions [recommended collection]

[Dahua Data Structure-Introduction to Data Structure ①]

Spring @ConfigurationProperties

Why do we want to broadcast live on WeChat public account? What are the advantages?

How to bring up the toolbar under the desktop of Apple laptop

Dialog: Manually enter information

Daily

More

2024-05-21(35)

2024-05-20(5)

2024-05-19(0)

2024-05-18(31)

2024-05-17(6)

2024-05-16(23)

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)