Created
November 23, 2017 19:02
-
-
Save DavidCabral/3b60e8b3ce96551ec36cc4fde65a2eee to your computer and use it in GitHub Desktop.
SimpleCorsFilter
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import org.springframework.core.Ordered; | |
| import org.springframework.core.annotation.Order; | |
| import org.springframework.stereotype.Component; | |
| import javax.servlet.*; | |
| import javax.servlet.http.HttpServletRequest; | |
| import javax.servlet.http.HttpServletResponse; | |
| import java.io.IOException; | |
| @Component | |
| @Order(Ordered.HIGHEST_PRECEDENCE) | |
| public class SimpleCorsFilter implements Filter { | |
| public SimpleCorsFilter() { | |
| } | |
| @Override | |
| public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException { | |
| HttpServletResponse response = (HttpServletResponse) res; | |
| HttpServletRequest request = (HttpServletRequest) req; | |
| response.setHeader("Access-Control-Allow-Credentials", "true"); | |
| response.setHeader("Access-Control-Allow-Origin", request.getHeader("Origin")); | |
| if ("OPTIONS".equals(request.getMethod())) { | |
| response.setHeader("Access-Control-Allow-Methods", "POST, GET, DELETE, PUT, OPTIONS"); | |
| response.setHeader("Access-Control-Allow-Headers", "Authorization, Content-Type, Accept"); | |
| response.setHeader("Access-Control-Max-Age", "3600"); | |
| response.setStatus(HttpServletResponse.SC_OK); | |
| } else { | |
| chain.doFilter(req, response); | |
| } | |
| } | |
| @Override | |
| public void init(FilterConfig filterConfig) { | |
| } | |
| @Override | |
| public void destroy() { | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment