四方支付旧框架升级
blame | 历史 | 原始文档
xuekang
2024-05-10 806d4b0d8639b3b04c166cc60a69eb6f31d4e6aa 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58

package org.dromara.gateway.filter;


 


import org.springframework.core.Ordered;


import org.springframework.http.HttpHeaders;


import org.springframework.http.HttpMethod;


import org.springframework.http.HttpStatus;


import org.springframework.http.server.reactive.ServerHttpRequest;


import org.springframework.http.server.reactive.ServerHttpResponse;


import org.springframework.stereotype.Component;


import org.springframework.web.cors.reactive.CorsUtils;


import org.springframework.web.server.ServerWebExchange;


import org.springframework.web.server.WebFilter;


import org.springframework.web.server.WebFilterChain;


import reactor.core.publisher.Mono;


 


 


/**


 * 跨域配置


 *


 * @author Lion Li


 */


@Component


public class GlobalCorsFilter implements WebFilter, Ordered {


 


    /**


     * 这里为支持的请求头,如果有自定义的header字段请自己添加


     */


    private static final String ALLOWED_HEADERS = "X-Requested-With, Content-Language, Content-Type, Authorization, clientid, credential, X-XSRF-TOKEN, isToken, token, Admin-Token, App-Token";


    private static final String ALLOWED_METHODS = "GET,POST,PUT,DELETE,OPTIONS,HEAD";


    private static final String ALLOWED_ORIGIN = "*";


    private static final String ALLOWED_EXPOSE = "*";


    private static final String MAX_AGE = "18000L";


 


    @Override


    public Mono<Void> filter(ServerWebExchange exchange, WebFilterChain chain) {


        ServerHttpRequest request = exchange.getRequest();


        if (CorsUtils.isCorsRequest(request)) {


            ServerHttpResponse response = exchange.getResponse();


            HttpHeaders headers = response.getHeaders();


            headers.add("Access-Control-Allow-Headers", ALLOWED_HEADERS);


            headers.add("Access-Control-Allow-Methods", ALLOWED_METHODS);


            headers.add("Access-Control-Allow-Origin", ALLOWED_ORIGIN);


            headers.add("Access-Control-Expose-Headers", ALLOWED_EXPOSE);


            headers.add("Access-Control-Max-Age", MAX_AGE);


            headers.add("Access-Control-Allow-Credentials", "true");


            if (request.getMethod() == HttpMethod.OPTIONS) {


                response.setStatusCode(HttpStatus.OK);


                return Mono.empty();


            }


        }


        return chain.filter(exchange);


    }


 


    @Override


    public int getOrder() {


        return Ordered.HIGHEST_PRECEDENCE;


    }


}