请求的资源上不存在“Access-Control-Allow-Origin”标头。

Question

我正在使用 SpringMVC。我想使用 Web 服务调用 XML 文件以便稍后解析它。问题是我无法访问 XML 文件，我收到此错误：No 'Access-Control -Allow-Origin' 标头出现在请求的资源上。我尝试了以下解决方案：

我创建了一个新类，其目的是在请求的资源上添加 Access-Control-Allow-Origin' 标头。这就是类

package com.mycompany.myapp;

import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletOutputStream;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

public class JsonpFilter implements Filter {

private String functionName;

@Override
public void destroy() {

}

@Override
public void doFilter(ServletRequest request, ServletResponse servletResponse,
                     FilterChain chain) throws IOException, ServletException {

    if (!(request instanceof HttpServletRequest)) {
        throw new ServletException("This filter can "
                                   + " only process HttpServletRequest requests");
    }

    HttpServletRequest httpRequest = (HttpServletRequest) request;
    HttpServletResponse response = (HttpServletResponse) servletResponse;

    if (isJSONPRequest(httpRequest)) {
        ServletOutputStream out = response.getOutputStream();

        out.println(getCallbackMethod(httpRequest) + "(");
        chain.doFilter(request, response);
        out.println(");");

        response.setContentType("text/javascript");
    } else {
        response.addHeader("Access-Control-Allow-Origin", "*");
        chain.doFilter(request, response);
    }

}

@Override
public void init(FilterConfig filterConfig) throws ServletException {
    this.functionName = filterConfig.getInitParameter("encoding");
    if(this.functionName == null || this.functionName.length() <= 0) {
        this.functionName = "callback";
    }
}

private String getCallbackMethod(HttpServletRequest httpRequest) {
    return httpRequest.getParameter(this.functionName);
}

private boolean isJSONPRequest(HttpServletRequest httpRequest) {
    String callbackMethod = getCallbackMethod(httpRequest);
    return (callbackMethod != null && callbackMethod.length() > 0);
}

}

然后我将这两行添加到我的 web.xml 文件中：

    <display-name>DataServices</display-name>

   <filter>
    <filter-name>JSONPRequestFilter</filter-name>
    <filter-class> com.mycompany.myapp.JsonpFilter</filter-class>
    <init-param>
        <param-name>functionName</param-name>
        <param-value>callback</param-value>
    </init-param>
</filter>

<filter-mapping>
    <filter-name>JSONPRequestFilter</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

我没有任何编译问题，但在执行时我仍然在控制台中遇到同样的错误。因此，“Access-Control-Allow-Origin”标头没有被考虑在内。 拜托，如果你能找出我的程序有什么问题，或者建议我另一种解决方案，我将不胜感激

Answer 1

为此实现这个接口

org.springframework.web.servlet.HandlerInterceptor

这是一个例子

@Component
public class CORSInterceptor implements HandlerInterceptor{
   private static final Log LOG = LogFactory.getLog(CORSInterceptor.class);

   @Override
   public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {

       LOG.trace("sending headers");
       response.setHeader("Access-Control-Allow-Origin", "*");
       response.setHeader("Access-Control-Allow-Methods", "POST, GET, PUT, DELETE");
       response.setHeader("Access-Control-Max-Age", "3600");
       response.setHeader("Access-Control-Allow-Headers", "x-requested-with");

       return true;
   }

   @Override
   public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView)
        throws Exception {

   }

   @Override
   public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex)
        throws Exception {
        LOG.trace("afterCompletion is called");
   }

}

然后将此行添加到您的应用程序上下文中

<mvc:interceptors>
    <bean class="com.elm.mb.rest.interceptors.CORSInterceptor" />
</mvc:interceptors>