Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
S
smart_gov_platform
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
赵啸非
smart_gov_platform
Commits
e3a2b723
Commit
e3a2b723
authored
Oct 11, 2024
by
赵啸非
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
提交配置校验
parent
75db3be0
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
3 additions
and
4 deletions
+3
-4
portal-manager/src/main/java/com/mortals/xhx/base/framework/filter/SameSiteCookieFilter.java
...rtals/xhx/base/framework/filter/SameSiteCookieFilter.java
+3
-4
No files found.
portal-manager/src/main/java/com/mortals/xhx/base/framework/filter/SameSiteCookieFilter.java
View file @
e3a2b723
...
@@ -34,7 +34,6 @@ public class SameSiteCookieFilter implements Filter {
...
@@ -34,7 +34,6 @@ public class SameSiteCookieFilter implements Filter {
public
void
doFilter
(
ServletRequest
request
,
ServletResponse
response
,
FilterChain
chain
)
public
void
doFilter
(
ServletRequest
request
,
ServletResponse
response
,
FilterChain
chain
)
throws
IOException
,
ServletException
{
throws
IOException
,
ServletException
{
HttpServletResponse
httpResponse
=
(
HttpServletResponse
)
response
;
HttpServletResponse
httpResponse
=
(
HttpServletResponse
)
response
;
String
[]
allowDomain
=
{
"localhost"
,
"192.168.0.98"
};
List
<
String
>
allowedOrigins
=
StrUtil
.
split
(
trustedReferer
,
","
);
List
<
String
>
allowedOrigins
=
StrUtil
.
split
(
trustedReferer
,
","
);
// Set allowedOrigins= new HashSet(Arrays.asList(allowDomain));
// Set allowedOrigins= new HashSet(Arrays.asList(allowDomain));
...
@@ -44,13 +43,13 @@ public class SameSiteCookieFilter implements Filter {
...
@@ -44,13 +43,13 @@ public class SameSiteCookieFilter implements Filter {
String
origin
=
host
.
getHost
();
String
origin
=
host
.
getHost
();
if
(
allowedOrigins
.
contains
(
origin
)){
if
(
allowedOrigins
.
contains
(
origin
)){
httpResponse
.
setHeader
(
"Access-Control-Allow-Origin"
,
originHeader
);
httpResponse
.
setHeader
(
"Access-Control-Allow-Origin"
,
originHeader
);
//
httpResponse.setContentType("application/json;charset=UTF-8");
httpResponse
.
setContentType
(
"application/json;charset=UTF-8"
);
httpResponse
.
setHeader
(
"Access-Control-Allow-Methods"
,
"POST, GET, OPTIONS, DELETE"
);
httpResponse
.
setHeader
(
"Access-Control-Allow-Methods"
,
"POST, GET, OPTIONS, DELETE"
);
httpResponse
.
setHeader
(
"Access-Control-Max-Age"
,
"3600"
);
httpResponse
.
setHeader
(
"Access-Control-Max-Age"
,
"3600"
);
httpResponse
.
setHeader
(
"Access-Control-Allow-Headers"
,
"Content-Type,
Access-T
oken"
);
httpResponse
.
setHeader
(
"Access-Control-Allow-Headers"
,
"Content-Type,
authorization,autht
oken"
);
// 如果要把Cookie发到服务器,需要指定Access-Control-Allow-Credentials字段为true
// 如果要把Cookie发到服务器,需要指定Access-Control-Allow-Credentials字段为true
httpResponse
.
setHeader
(
"Access-Control-Allow-Credentials"
,
"true"
);
httpResponse
.
setHeader
(
"Access-Control-Allow-Credentials"
,
"true"
);
//
httpResponse.setHeader("Access-Control-Expose-Headers", "*");
httpResponse
.
setHeader
(
"Access-Control-Expose-Headers"
,
"*"
);
}
}
}
}
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
