When allowCredentials is true, allowedOrigins cannot contain the special value “*“
作者:互联网
目录
- End -
﹀
﹀
﹀
梦想是咸鱼
关注一下吧
前言
- 项目接口访问出现
allowedOrigins cannot contain the special value "*"
java.lang.IllegalArgumentException: When allowCredentials is true,
allowedOrigins cannot contain the special value "*" since that cannot be set on the "Access-Control-Allow-Origin" response header.
To allow credentials to a set of origins, list them explicitly or consider using "allowedOriginPatterns" instead.
修改方式
- 修改
allowedOrigins
为allowedOriginPatterns
- 修改前
@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**")
.allowedOrigins("*")
.allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
.allowCredentials(true)
.maxAge(3600)
.allowedHeaders("*");
}
- 修改后
@Override
public void addCorsMappings(CorsRegistry registry) {
registry.addMapping("/**")
.allowedOriginPatterns("*")
.allowedMethods("GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS")
.allowCredentials(true)
.maxAge(3600)
.allowedHeaders("*");
}
标签:When,value,allowCredentials,cannot,registry,true,special,allowedOrigins 来源: https://www.cnblogs.com/maggieq8324/p/15236050.html