我正在尝试将Webstorm应用程序的请求发送到后端应用程序,这两个应用程序都位于不同的端口,我在前端使用angularJS,在后端使用Java。我已经阅读了一些有关CORS过滤器的知识,并且了解到为了执行跨源请求,我需要实现这些。但是,这样做之后我的错误是
Failed to load resource: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:63343' is therefore not allowed access. http://localhost:8080/register?password=&username= XMLHttpRequest cannot load http://localhost:8080/register?password=&username=. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:63343' is therefore not allowed access.
完全没有改变,这使我相信我做错了什么,这是我发送请求的代码:
var charmanderServices = angular.module('charmanderServices', ['ngResource']); var hostAdress = "http://localhost:8080"; charmanderServices.factory("register", ["$resource", function($resource){ console.log('in service'); return $resource(hostAdress + "/register", {}, { 'registerUser' : { method: 'POST', isArray: false, params: { username: '@username', password: '@password' } }, headers : {'Content-Type' : 'application/x-www-form-urlencoded'} }); } ]);
我的corsFilter是这样写的:
@Component public class SimpleCORSFilter implements Filter { public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException { //This is not even printing System.out.println("Cheers lads, I'm in the filter"); HttpServletResponse response = (HttpServletResponse) res; response.setHeader("Access-Control-Allow-Origin", "*"); response.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE"); response.setHeader("Access-Control-Max-Age", "3600"); response.setHeader("Access-Control-Allow-Headers", "x-requested-with, X-Auth-Token, Content-Type"); chain.doFilter(req, res); } public void init(FilterConfig filterConfig) {} public void destroy() {} }
这是我的web.xml:
<web-app version="3.0" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_1.xsd"> <display-name>Project</display-name> <!-- Load Spring Contexts --> <listener> <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class> </listener> <!-- CORS Filter --> <filter> <filter-name>cors</filter-name> <filter-class>com.robin.filters.SimpleCORSFilter</filter-class> </filter> <filter-mapping> <filter-name>cors</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <servlet> <servlet-name>dispatcherServlet</servlet-name> <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class> <init-param> <param-name>contextConfigLocation</param-name> <param-value>classpath:/spring/applicationContext.xml</param-value> </init-param> <load-on-startup>1</load-on-startup> </servlet> <servlet-mapping> <servlet-name>dispatcherServlet</servlet-name> <url-pattern>/</url-pattern> </servlet-mapping> </web-app>
这是我捕获请求的控制器:
@Controller public class UserController { @Autowired private UserService userService; @RequestMapping(value = "/register" , method= RequestMethod.POST, produces = "application/json") @ResponseBody public boolean register(@RequestParam(value = "username") String username, @RequestParam(value = "password") String password){ System.out.println("Im in register hurray"); return userService.register(username, password); } }
更新:我曾尝试将过滤器实现为OncePerRequestFilter,但仍然无法正常工作。有人可以在这里进一步帮助我吗?
更新#2:也尝试过此操作,http://software.dzhuvinov.com/cors-filter- installation.html,不走运
Update#3:这是我在控制台中的输出,我可以看到响应没有添加任何标题:
Request URL:http://localhost:8080/register?password=g&username=g Request Method:OPTIONS Status Code:200 OK Request Headersview source Accept:*/* Accept-Encoding:gzip,deflate,sdch Accept-Language:en-US,en;q=0.8,nl;q=0.6 Access-Control-Request-Headers:accept, content-type Access-Control-Request-Method:POST Connection:keep-alive Host:localhost:8080 Origin:http://localhost:63343 Referer:http://localhost:63343/Project/index.html?uName=g&uPassword=g&uPasswordConfirm=g User-Agent:Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.152 Safari/537.36 Query String Parametersview sourceview URL encoded password:g username:g Response Headersview source Allow:GET, HEAD, POST, PUT, DELETE, OPTIONS Content-Length:0 Date:Fri, 04 Apr 2014 09:50:35 GMT Server:Apache-Coyote/1.1
更新#4:使用@WebFilter而不是@Component注释过滤器,没有帮助
更新#5:这是我的applicationContext.xml文件:
<?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:context="http://www.springframework.org/schema/context" xmlns:mvc="http://www.springframework.org/schema/mvc" xmlns:tx="http://www.springframework.org/schema/tx" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx.xsd"> <context:component-scan base-package="com.robin"/> <mvc:annotation-driven/> <!-- Hibernate Session Factory --> <bean id="sessionFactory" class="org.springframework.orm.hibernate4.LocalSessionFactoryBean"> <property name="dataSource" ref="dataSource"/> <property name="packagesToScan"> <array> <value>com.robin.model</value> </array> </property> <property name="hibernateProperties"> <props> <prop key="hibernate.dialect">org.hibernate.dialect.MySQL5Dialect</prop> <prop key="hibernate.show_sql">true</prop> <prop key="hibernate.hbm2ddl.auto">create</prop> </props> </property> <property name="annotatedClasses"> <list> <value>com.robin.model.User</value> </list> </property> </bean> <tx:annotation-driven transaction-manager="transactionManager"/> <bean id="transactionManager" class="org.springframework.orm.hibernate4.HibernateTransactionManager"> <property name="sessionFactory" ref="sessionFactory"/> </bean> <!--Driver for mysqldb --> <import resource="mysql-context.xml"/> </beans>
我还从控制器和register.html文件中添加了以下代码:
charmanderControllers.controller('registerController', ['$scope', 'register', function($scope, register){ $scope.username = ''; $scope.password = ''; $scope.register = function () { register.registerUser({'username': $scope.username, 'password': $scope.password}).$promise.then(function(data){ switch(data.response){ case true: //succes $scope.registered = true; $scope.userExists = false; break; case false: //user exists $scope.registered = false; $scope.userExists = true; break; } console.log(data.response); }) }; $scope.checkValidRegister = function (invalid) { console.log(invalid); console.log($scope.passwordConfirm); console.log($scope.password); console.log($scope.username); if (invalid || $scope.password != $scope.passwordConfirm) { console.log("I shouldnt be here"); $scope.validation = true; if ($scope.password != $scope.passwordConfirm) { $scope.passwordError = true; } } else { register(); } }; }]);
register.html
<h1>Register now!</h1> <form method="post" class="register" novalidate> <p> <label for="email">E-mail:</label> <input type="text" name="login" id="email" placeholder="E-mail address..." required ng-model="username"> </p> <p> <label for="password">Password:</label> <input type="password" name="password" id="password" placeholder="Password..." required ng-model="password"> </p> <p> <label for="confirm_password">Confirm password: </label> <input type="password" name="confirm_password" id="confirm_password" placeholder="Confirm password..." required ng-model="passwordConfirm"> <span ng-show="passwordError">Passwords do not match!</span> </p> <p class="register_submit"> <button type="submit" class="register-button" ng-click="checkValidRegister()">Register</button> </p> </form>
您的代码和配置总体上看起来不错,并且我能够在本地环境中运行它。请从您的中删除 @Component 批注SimpleCORSFilter,因为您将它用作普通的Servlet过滤器,并且不必成为Spring上下文的一部分。
SimpleCORSFilter
UPD。 Tomcat 7具有自己的CORS过滤器实现。您可以查看文档和源代码以获取更多详细信息。我已经修改了标题以反映其默认配置,现在应该可以正常工作了。
由于您已经在使用Spring,并且如果您使用的是Spring 4.2或更高版本,则不需要CorsFilter,而只需用注释您的控制器方法CrossOrigin。这是关于此的出色文章,值得一读。
CorsFilter
CrossOrigin
也请检查介绍不同平台的CORS配置的不错的资源。
这是我使用普通Filter实现的工作示例:
控制器:
@Controller public class UserController { private static Logger log = Logger.getAnonymousLogger(); @RequestMapping( value = "/register", method = RequestMethod.POST, consumes = "application/x-www-form-urlencoded") @ResponseBody public String register(@RequestParam(value = "user") String username, @RequestParam(value = "password") String password) { log.info(username + " " + password); return "true"; } }
过滤:
public class CorsFilter implements Filter { private static final Logger log = Logger.getAnonymousLogger(); @Override public void init(FilterConfig filterConfig) throws ServletException { } @Override public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException { log.info("Adding Access Control Response Headers"); HttpServletResponse response = (HttpServletResponse) servletResponse; response.setHeader("Access-Control-Allow-Origin", "*"); response.setHeader("Access-Control-Allow-Credentials", "true"); response.setHeader("Access-Control-Allow-Methods", "POST, GET, HEAD, OPTIONS"); response.setHeader("Access-Control-Allow-Headers", "Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers"); filterChain.doFilter(servletRequest, servletResponse); } @Override public void destroy() { } }
web.xml中的过滤器映射:
<filter> <filter-name>cors</filter-name> <filter-class>com.udalmik.filter.CorsFilter</filter-class> </filter> <filter-mapping> <filter-name>cors</filter-name> <url-pattern>/register</url-pattern> </filter-mapping>
JS从单独的Web应用程序(JQuery)执行请求:
$(document).ready(function() { $('#buttonId').click(function() { $.ajax({ type: "POST", url: "http://localhost:8080/register", success : function(data){ console.log(data); }, data : { user : 'test.user@acme.com', password : 'password' } }); } }
