feat

src/main/java/com/njyunzhi/invoice/config/cros/CorsConfig.java

 @SpringBootConfiguration
 public class CorsConfig implements WebMvcConfigurer {
 
-    @Autowired
-    CorsProperties crosProperties;
-
-    @Autowired
-    HttpServletRequest request;
-
-    @Override
-    public void addCorsMappings(CorsRegistry registry) {
-        if (null == crosProperties.getEnabled() || !crosProperties.getEnabled()) return;
-
-//        //添加映射路径
-        CorsRegistration registration = registry.addMapping("/**");
-        //是否发送Cookie
-//        registration.allowCredentials(true);
-        // 域名
-        String origin = request.getHeader("Origin");
-        registration.allowedOrigins(origin);
-        //放行哪些请求方式
-        registration.allowedMethods("*");
-        //放行哪些原始请求头部信息
-        registration.allowedHeaders("*");
-        //暴露哪些原始请求头部信息
-        registration.exposedHeaders(toArray(crosProperties.getExposedHeaders()));
-    }
-
-    private String[] toArray(List<String> list) {
-        return list.toArray(new String[0]);
-    }
+//    @Autowired
+//    CorsProperties crosProperties;
+//
+//    @Autowired
+//    HttpServletRequest request;
+//
+//    @Override
+//    public void addCorsMappings(CorsRegistry registry) {
+//        if (null == crosProperties.getEnabled() || !crosProperties.getEnabled()) return;
+//
+////        //添加映射路径
+//        CorsRegistration registration = registry.addMapping("/**");
+//        //是否发送Cookie
+////        registration.allowCredentials(true);
+//        // 域名
+//        String origin = request.getHeader("Origin");
+//        registration.allowedOrigins(origin);
+//        //放行哪些请求方式
+//        registration.allowedMethods("*");
+//        //放行哪些原始请求头部信息
+//        registration.allowedHeaders("*");
+//        //暴露哪些原始请求头部信息
+//        registration.exposedHeaders(toArray(crosProperties.getExposedHeaders()));
+//    }
+//
+//    private String[] toArray(List<String> list) {
+//        return list.toArray(new String[0]);
+//    }
 }

src/main/java/com/njyunzhi/invoice/config/cros/CorsFilter.java

+package com.njyunzhi.invoice.config.cros;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+import org.springframework.web.filter.OncePerRequestFilter;
+
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+@Component
+public class CorsFilter extends OncePerRequestFilter {
+
+    @Autowired
+    CorsProperties crosProperties;
+
+    @Override
+    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
+
+        if (null == crosProperties.getEnabled() || !crosProperties.getEnabled()) {
+            filterChain.doFilter(request, response);
+            return ;
+        };
+
+        String origin = request.getHeader("Origin");
+        response.setHeader("Access-Control-Allow-Origin", origin);
+        response.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
+        response.setHeader("Access-Control-Max-Age", "3600");
+        response.setHeader("Access-Control-Allow-Headers", "*");
+        response.addHeader("Access-Control-Expose-Headers", String.join(", ", crosProperties.getExposedHeaders()));
+
+        if ("OPTIONS".equals(request.getMethod())) {
+            response.setStatus(HttpServletResponse.SC_OK);
+        } else {
+            filterChain.doFilter(request, response);
+        }
+    }
+}