在apache-tomee plus-1.7.2中启用CORS过滤器
我正在尝试在apache-tomee plus-1.7.2中启用CORS。根据http://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#CORS_Filter,我在tomcat中的conf/web.xml中添加了以下内容:
<filter>
<filter-name>CorsFilter</filter-name>
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
<init-param>
<param-name>cors.allowed.origins</param-name>
<param-value>*</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.methods</param-name>
<param-value>GET,POST,PUT,DELETE,OPTIONS,HEAD</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.headers</param-name>
<param-value>Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers</param-value>
</init-param>
<init-param>
<param-name>cors.exposed.headers</param-name>
<param-value>Access-Control-Allow-Origin,Access-Control-Allow-Credentials</param-value>
</init-param>
<init-param>
<param-name>cors.support.credentials</param-name>
<param-value>true</param-value>
</init-param>
<init-param>
<param-name>cors.preflight.maxage</param-name>
<param-value>10</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CorsFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping> 但它不起作用。我的客户仍然收到以下异常
CORS策略阻止了从源'http://localhost:8100‘在'http://localhost:8080/WebServiceTest2/webresources/myService’对XMLHttpRequest的访问:对印前检查请求的响应未通过访问控制检查:请求的资源上不存在' Access - control -Allow- origin‘标头。
我还尝试添加一个手动过滤器,如本教程所示:https://www.baeldung.com/cors-in-jax-rs,但根本没有执行。即使在我将类添加到应用程序配置中的getClasses()方法之后也是如此。
手工过滤解决方案代码: package com.mycompany.webservicetest.two.rest.service;
import java.io.IOException;
import javax.ws.rs.container.ContainerRequestContext;
import javax.ws.rs.container.ContainerRequestFilter;
import javax.ws.rs.container.ContainerResponseContext;
import javax.ws.rs.container.ContainerResponseFilter;
import javax.ws.rs.core.MultivaluedMap;
import javax.ws.rs.core.UriInfo;
import javax.ws.rs.ext.Provider;
import java.io.IOException;
@Provider
public class CorsFilter implements ContainerResponseFilter, ContainerRequestFilter {
@Override
public void filter(ContainerRequestContext reqContext,
ContainerResponseContext resContext) throws IOException {
System.out.println("-- res info --");
System.out.println("!!!!!!!!!!!! ----------- Filter called!! ");
resContext.getHeaders().add("Access-Control-Allow-Origin", "*");
resContext.getHeaders().add("Access-Control-Allow-Headers", "origin, content-type, accept, authorization");
resContext.getHeaders().add("Access-Control-Allow-Credentials", "true");
resContext.getHeaders().add("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS, HEAD");
resContext.getHeaders().add("Access-Control-Max-Age", "1209600");
}
@Override
public void filter(ContainerRequestContext reqContext) throws IOException {
System.out.println("-- req info --: " + reqContext);
}
}应用程序配置文件:
package com.mycompany.webservicetest.two.rest.service;
import java.util.Set;
import javax.ws.rs.core.Application;
@javax.ws.rs.ApplicationPath("webresources")
public class ApplicationConfig extends Application
{
@Override
public Set<Class<?>> getClasses()
{
Set<Class<?>> resources = new java.util.HashSet<Class<?>>();
addRestResourceClasses(resources);
System.out.println("Registering Cors Filter");
resources.add(com.mycompany.webservicetest.two.rest.service.CorsFilter.class);
return resources;
}
private void addRestResourceClasses(Set<Class<?>> resources)
{
// ... my web service classes that aren't filters
}
}回答 1
Stack Overflow用户
发布于 2019-01-20 02:39:28
我认为tomcat的那个版本可能不支持这个过滤器。我切换到tomee-plume-7.1.0,粘贴了相同的过滤器(稍作改动,如果允许的起源是*,则不能有"true“)过滤器,并且它起作用了。
https://stackoverflow.com/questions/54264002
复制相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号