AngularJS和Spring

时间:2015-11-28 09:15:25

标签: java angularjs spring-mvc cors

我知道有很多与此类问题相关的信息,但我读过的所有解决方案都不适合我。

所以我要在这里留下我的代码也许你可以弄清楚发生了什么,因为我正要把我的电脑扔进窗户。

我遇到这个错误,我点击了一个向我的休息服务器发出Ajax请求的按钮:

XMLHttpRequest cannot load http://localhost:8081/XXXXXXX. 
Request header field Access-Control-Allow-Origin is not allowed 
by Access-Control-Allow-Headers in preflight response.

当然我已经在客户端(AngularJS)的请求中添加了标题:

all : function() {
    return $http({
        method : 'GET',
        url : url_base + '/XXXXXXXX',
        headers:{
            'Access-Control-Allow-Origin': '*',
            'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE, OPTIONS',
            'Access-Control-Allow-Headers': 'Content-Type, X-Requested-With',
            'X-Random-Header':'123123123'
        }
    });
}

在服务器端,我在web.xml文件中添加了一个过滤器:

 <filter>
    <filter-name>CORSFilter</filter-name>
    <filter-class>
        filters.CORSFilter
    </filter-class>
</filter>
<filter-mapping>
    <filter-name>CORSFilter</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

我添加了一个实现过滤器接口的类:

package filters;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletResponse;

import org.springframework.stereotype.Component;

@Component
public class CORSFilter implements Filter {

    @Override
    public void init(FilterConfig arg0) throws ServletException {}

    @Override
    public void doFilter(ServletRequest req, ServletResponse resp,
            FilterChain chain) throws IOException, ServletException {
        // TODO Auto-generated method stub
        HttpServletResponse response=(HttpServletResponse) resp;

        response.setHeader("Access-Control-Allow-Origin", "*");
        response.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
        response.setHeader("Access-Control-Max-Age", "3600");
        response.setHeader("Access-Control-Allow-Headers", "x-requested-with");

        chain.doFilter(req, resp);
    }

    @Override
    public void destroy() {}

}

过滤器会自动将CORS标头添加到任何响应中,因此我将过滤器添加到任何模式中。

这是请求和响应标头,正如您所看到的,它们具有CORS标头,但我不太确定发生了什么。

响应标题 

Access-Control-Allow-Headers:x-requested-with
Access-Control-Allow-Methods:POST, GET, OPTIONS, DELETE
Access-Control-Allow-Origin:*
Access-Control-Max-Age:3600
Allow:GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
Content-Length:0
Date:Sat, 28 Nov 2015 08:48:08 GMT
Server:Apache-Coyote/1.1
**Request Headers**
view source
Accept:*/*
Accept-Encoding:gzip, deflate, sdch
Accept-Language:es-ES,es;q=0.8
Access-Control-Request-Headers:accept, access-control-allow-headers, access-control-allow-methods, access-control-allow-origin, x-random-header
Access-Control-Request-Method:GET
Connection:keep-alive
Host:localhost:8081
Origin:http://127.0.0.1:8080
Referer:http://127.0.0.1:8080/
User-Agent:Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.86 Safari/537.36

我通过Rest Spring API阅读了有关@CorsOrigin here的内容,但我不知道我没有可用的注释,因此它没有编译。也许我需要在POM中添加一个新的特定库?

1 个答案:

答案 0 :(得分:0)

请勿在AngularJS的请求中添加任何标题。

只需在您的web.xml中添加此过滤器,它就是一个过滤器: 解释here 

<filter>
  <filter-name>CorsFilter</filter-name>
  <filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
</filter>
<filter-mapping>
  <filter-name>CorsFilter</filter-name>
  <url-pattern>/*</url-pattern>
</filter-mapping>

这将告诉Tomcat允许CORS请求。

相关问题
最新问题