ajax跨域请求(cors实现),ajax跨域请求(CORS实现)
場景:目前有項目A(基于servlet的WEB項目),和項目B(基于spring boot的WEB項目),使用同一CAS提供單點登陸,如今須要兩個項目互相調(diào)用接口數(shù)據(jù),因此涉及到ajax的跨域請求java
調(diào)研:通過調(diào)研發(fā)現(xiàn)目前的ajax跨域解決方案有兩種,jsonp和cors,其中jsonp須要在返回值中攜帶回調(diào)函數(shù),cors則須要在響應(yīng)頭中附加指定參數(shù)。比對實現(xiàn)方式和優(yōu)劣點,決定使用cors來實現(xiàn)web
CORS原理:服務(wù)器在收到請求以后,在響應(yīng)參數(shù)中加入,Access-Control-Allow-Origin,Access-Control-Allow-Methods,Access-Control-Max-Age,Access-Control-Allow-Headers,Access-Control-Allow-Credentials等參數(shù),瀏覽器在接收到返回值后會經(jīng)過這些參數(shù)的設(shè)置來判斷服務(wù)器是否支持跨域請求。因此,使用cors的方法就是經(jīng)過設(shè)置過濾器,在指定請求的響應(yīng)頭中添加參數(shù)便可,傳統(tǒng)的WEB項目,須要在web.xml中設(shè)置,而spring boot項目能夠經(jīng)過注解來設(shè)置ajax
1,servlet的WEB項目實現(xiàn)CORSspring
服務(wù)器端新建過濾器類json
package com.tas.util;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletResponse;
/**
* 跨域支持
*/
public class SimpleCORSFilter implements Filter {
@Override
public void destroy() {
// TODO Auto-generated method stub
}
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
HttpServletResponse httpServletResponse = (HttpServletResponse) response;
httpServletResponse.setHeader("Access-Control-Allow-Origin", "http://localhost");
httpServletResponse.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE");
httpServletResponse.setHeader("Access-Control-Max-Age", "3600");
httpServletResponse.setHeader("Access-Control-Allow-Headers", "x-requested-with");
// 是否支持cookie跨域
httpServletResponse.addHeader("Access-Control-Allow-Credentials", "true");
chain.doFilter(request, response);
}
@Override
public void init(FilterConfig arg0) throws ServletException {
// TODO Auto-generated method stub
}
}
在web.xml中配置過濾器,注意過濾器要配置在sevrlet和cas的過濾器以前跨域
Simple CORSFilter
com.tas.util.SimpleCORSFilter
Simple CORSFilter
/*
這樣的配置就完成了,須要注意的是,在須要跨域訪問該項目的網(wǎng)頁中,若是須要傳遞cookie,則要在ajax中打開withCredentials,以下瀏覽器
$.ajax({
url:"http://localhost:8080/tasociety/IndexController.crossdomainTest.do",
type: "get",
dataType:"json",
xhrFields: {
withCredentials: true
},
crossDomain: true,
success:function (data) {
alert("12345");
console.log(data);
}
})
2,spring boot 的WEB項目實現(xiàn)CORS服務(wù)器
由于有默認(rèn)的注解@CrossOrigin,因此直接配置在controller上就行了cookie
package com.castmember.Controller;
@CrossOrigin(origins = "http://localhost:8080",allowCredentials = "true")
@Controller
public class IndexController {
@Autowired
SysUserDao sysuserdao;
@RequestMapping("/")
public String index(Model model) {
Optional useropt= sysuserdao.findById((long)1);
model.addAttribute("user", useropt.orElse(null));
return "index";
}
}
在須要跨域訪問該項目的網(wǎng)頁中,若是須要傳遞cookie,則要在ajax中打開withCredentials,以下app
$.ajax({
url:"http://localhost/castmember/crossdomaindata",
type: "get",
dataType:"json",
xhrFields: {
withCredentials: true
},
crossDomain: true,
success:function (data) {
alert("12345");
console.log(data);
}
})
總結(jié)
以上是生活随笔為你收集整理的ajax跨域请求(cors实现),ajax跨域请求(CORS实现)的全部內(nèi)容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: nba2k19登陆显示你与服务器,NBA
- 下一篇: 手机 服务器 推送消息推送消息,推送信息