When allowCredentials is true, allowedOrigins cannot contain the special value “*“

2023-12-14 23:05:27

目录

前言

  • 项目接口访问出现allowedOrigins cannot contain the special value "*" 
java.lang.IllegalArgumentException: When allowCredentials is true, 
allowedOrigins cannot contain the special value "*" since that cannot be set on the "Access-Control-Allow-Origin" response header. 
To allow credentials to a set of origins, list them explicitly or consider using "allowedOriginPatterns" instead.

修改方式

  • 修改allowedOriginsallowedOriginPatterns
  • 修改前
@Override
public void addCorsMappings(CorsRegistry registry) {
    registry.addMapping("/**")
            .allowedOrigins("*")
            .allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
            .allowCredentials(true)
            .maxAge(3600)
            .allowedHeaders("*");
}
  • 修改后
@Override
public void addCorsMappings(CorsRegistry registry) {
    registry.addMapping("/**")
            .allowedOriginPatterns("*")
            .allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
            .allowCredentials(true)
            .maxAge(3600)
            .allowedHeaders("*");
}

- End -
梦想是咸鱼
关注一下吧
When allowCredentials is true, allowedOrigins cannot contain the special value “*“
上一篇:npm镜像源如何设置


下一篇:fiddler抓包工具 https抓取 ios手机端抓取