我试图实现的是在另一个域中使用我的Spring restful Web服务,但是当我执行生成JSON值的json url时,我的javascript控制台会生成以下错误:
跨域请求阻止:同源策略不允许在http://localhost:8080/SpringServiceJsonSample/service/updatepool/1.读取远程资源(原因:缺少CORS头'Access-Control-Allow-Origin')。跨域请求阻止:同源策略不允许在http://localhost:8080/SpringServiceJsonSample/service/updatepool/1.读取远程资源(原因:CORS请求失败)。
这是这些链接产生的JSON值http://localhost:8080/SpringServiceJsonSample/service/updatepool/1
{"use rid": 1,"名字":"品牌","lastName":"bennet","email":"benjie@gmail.com"}
以下是我的SpringController.java:
@RestController
@RequestMapping("/service/updatepool/")
public class SpringServiceController {
UserService userService = new UserService();
@RequestMapping(value = "/{id}", method = RequestMethod.GET,headers="Accept=application/json")
public User getUser(@PathVariable int id) {
User user=userService.getUserById(id);
return user;
}
}
然后我创建基于SimpleCORSFilterspring.io教程,所以这是我的SimpleCORSFilter.java类
@Component
public class SimpleCORSFIlter implements Filter{
public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {
HttpServletResponse response = (HttpServletResponse) res;
response.setHeader("Access-Control-Allow-Origin", "*");
response.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
response.setHeader("Access-Control-Max-Age", "3600");
response.setHeader("Access-Control-Allow-Headers", "x-requested-with");
chain.doFilter(req, res);
}
public void init(FilterConfig filterConfig) {}
public void destroy() {}
}
这是我如何消费JSON值,首先我创建index. html文件,看起来像index.html
<html ng-app>
<head>
<title>Angular Test</title>
<script src="https://ajax.googleapis.com/ajax/libs/angularjs/1.0.8/angular.min.js"></script>
<script src="app.js"></script>
</head>
<body>
<div ng-controller="Hello">
<p>User ID : {{greeting.userid}}</p>
<p>firstName : {{greeting.firstName}}</p>
<p>lastName : {{greeting.lastName}}</p>
<p>email : {{greeting.email}}</p>
</div>
</body>
</html>
这是我的app. js
function Hello($scope, $http) {
$http.get('http://localhost:8080/SpringServiceJsonSample/service/updatepool/1').
success(function(data) {
$scope.greeting = data;
});
}
我已经创建了CORS过滤器类为什么它仍然给我CORS阻塞的错误?我错过了什么?我不认为该类工作正常,我如何跟踪错误?
就像@Bill Bilal说的,我必须将它注册到我的web. xml,所以这是我如何在我的web.xml中注册它
<filter>
<filter-name>cors</filter-name>
<filter-class>com.myapp.springservice.utility.SimpleCORSFIlter</filter-class>
</filter>
<filter-mapping>
<filter-name>cors</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
前段时间,我在类似的REST服务器上遇到了类似的CORS问题。标题设置在REST服务器的基类中,但似乎不起作用。我能够修复它的唯一方法是将以下行添加到我的. htaccess文件中。
<ifModule mod_headers.c>
Header always set Access-Control-Allow-Origin: "*"
Header always set Access-Control-Allow-Methods "POST, GET, PUT, DELETE, OPTIONS"
Header always set Access-Control-Allow-Headers "X-Requested-With, content-type"
</ifModule>
RewriteEngine On
RewriteCond %{REQUEST_METHOD} OPTIONS
RewriteRule ^(.*)$ $1 [R=200,L]
您可以使用此过滤器解决您的问题。它与Spring Restful配合使用效果很好
public class CORSFilter extends OncePerRequestFilter {
private final Logger LOG = LoggerFactory.getLogger(CORSFilter.class);
@Override
protected void doFilterInternal(HttpServletRequest req, HttpServletResponse res, FilterChain chain) throws ServletException, IOException {
res.setHeader("Access-Control-Allow-Origin", "*");
res.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
res.setHeader("Access-Control-Max-Age", "3600");
res.setHeader("Access-Control-Allow-Headers", "X-PINGOTHER,Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Authorization");
res.addHeader("Access-Control-Expose-Headers", "xsrf-token");
if ("OPTIONS".equals(req.getMethod())) {
res.setStatus(HttpServletResponse.SC_OK);
} else {
chain.doFilter(req, res);
}
}
}
我发现这篇文章angularjsSpring跨域请求被阻止
希望这个有帮助。
