跨域

6680e68e · yuquan.zhu · chenzg · d23405ec · 6680e68e · 6680e68e
Commit 6680e68e authored 5 years ago by yuquan.zhu Committed by chenzg 3 years ago
Hide whitespace changes
Inline Side-by-side

Showing with 31 additions and 8 deletions

src/main/java/cn/timer/api/config/interceptor/RedisSessionInterceptor.java
+18 -0

src/main/java/cn/timer/api/config/interceptor/WebSecurityConfig.java
+13 -8

No files found.
--- a/src/main/java/cn/timer/api/config/interceptor/RedisSessionInterceptor.java
+++ b/src/main/java/cn/timer/api/config/interceptor/RedisSessionInterceptor.java
@@ -5,6 +5,8 @@ import java.io.IOException;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.servlet.http.HttpSession;
+
+import org.springframework.stereotype.Component;
 import org.springframework.web.servlet.HandlerInterceptor;
 import org.springframework.web.servlet.ModelAndView;

@@ -12,12 +14,28 @@ import cn.hutool.json.JSONObject;
 import cn.timer.api.utils.ResponseResult;

 //拦截登录失效的请求
+@Component
 public class RedisSessionInterceptor implements HandlerInterceptor {
 	
 	@Override
 	public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler)
 			throws Exception {
 		
+//		response.setHeader("Access-Control-Allow-Origin","http://120.24.24.239:8088");
+////		response.setHeader("Access-Control-Allow-Origin",request.getHeader("Origin"));
+//        response.setHeader("Access-Control-Allow-Methods", "*");
+//        response.setHeader("Access-Control-Allow-Credentials", "true");
+//        response.setHeader("Access-Control-Allow-Headers", "*");
+//        
+//        System.out.print("request.Origin>"+request.getHeader("Origin"));
+		
+//		//option预检查，直接通过请求
+//		if ("OPTIONS".equals(request.getMethod())){
+//		 return true;
+//		}
+		
+		
+		
 		/*
 		 * Enumeration<String> names = request.getHeaderNames();
 		 * while(names.hasMoreElements()) { String name = (String)names.nextElement();

--- a/src/main/java/cn/timer/api/config/interceptor/WebSecurityConfig.java
+++ b/src/main/java/cn/timer/api/config/interceptor/WebSecurityConfig.java
@@ -80,13 +80,18 @@ public class WebSecurityConfig implements WebMvcConfigurer {
        argumentResolvers.add(userMethodArgumentResolver);
    }
 	
-//	@Override  
-//    public void addCorsMappings(CorsRegistry registry) {  
-//        registry.addMapping("/**")  
-//                .allowedOrigins("*")  
-//                .allowCredentials(true)  
-//                .allowedMethods("GET", "POST", "DELETE", "PUT","PATCH")  
-//                .maxAge(3600);  
+//	@Override
+//    public void addCorsMappings(CorsRegistry registry) {
+////        System.out.println("我是MyWebConfig跨域");
+//        //设置允许跨域的路径
+//        registry.addMapping("/**")
+//                //设置允许跨域请求的域名
+//                .allowedOrigins("*")
+//                //是否允许证书 不再默认开启
+//                .allowCredentials(true)
+//                //设置允许的方法
+//                .allowedMethods("*")
+//                //跨域允许时间
+//                .maxAge(3600);
 //    }
-	
 }