Access-Control-Allow-Headers : cluster

f5cba2c6 · suntao · 154495e9 · f5cba2c6
Commit f5cba2c6 authored Jan 08, 2020 by suntao
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

CorsFilter.java ...p/cashloanflowboss/core/configuration/web/CorsFilter.java +1 -1

No files found.
--- a/src/main/java/cn/quantgroup/cashloanflowboss/core/configuration/web/CorsFilter.java
+++ b/src/main/java/cn/quantgroup/cashloanflowboss/core/configuration/web/CorsFilter.java
@@ -37,7 +37,7 @@ public class CorsFilter implements Filter {
        //允许请求的类型
        resp.setHeader("Access-Control-Allow-Methods", "GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH");
        //允许的请求头字段
-        resp.setHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
+        resp.setHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept, cluster");
        //设置预检请求的有效期
        //浏览器同源策略：出于安全考虑，浏览器限制跨域的http请求。怎样限制呢？通过发送两次请求：预检请求、用户请求。
        //1、预检请求作用：获知服务器是否允许该跨域请求：如果允许，才发起第二次真实的请求；如果不允许，则拦截第二次请求