https://stackoverflow.com/questions/8303162
-
25-10-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
Russian题
我已经配置了Jetty的Cross Origin过滤器,但是我继续收到以下错误。有人知道什么问题以及如何解决吗?在错误消息下方是我的覆盖描述符(即补充web.xml)
错误:
Origin http://localhost:8090 is not allowed by Access-Control-Allow-Origin.
覆盖描述符:
<!DOCTYPE web-app PUBLIC
"-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN"
"http://java.sun.com/dtd/web-app_2_3.dtd" >
<web-app>
<filter>
<filter-name>cross-origin</filter-name>
<filter-class>org.eclipse.jetty.servlets.CrossOriginFilter</filter-class>
<init-param>
<param-name>allowedOrigins</param-name>
<param-value>*</param-value>
</init-param>
<init-param>
<param-name>allowedMethods</param-name>
<param-value>*</param-value>
</init-param>
<init-param>
<param-name>allowedHeaders</param-name>
<param-value>*</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>cross-origin</filter-name>
<filter-pattern>/*</filter-pattern>
</filter-mapping>
</web-app>
请求标题
Accept:*/*
Accept-Charset:ISO-8859-1,utf-8;q=0.7,*;q=0.3
Accept-Encoding:gzip,deflate,sdch
Accept-Language:en-US,en;q=0.8
Access-Control-Request-Headers:Origin, Content-Type, Accept
Access-Control-Request-Method:POST
Connection:keep-alive
Host:localhost:8080
Origin:http://localhost:8090
Referer:http://localhost:8090/home
User-Agent:Mozilla/5.0 (X11; Linux i686) AppleWebKit/535.8 (KHTML, like Gecko) Chrome/17.0.942.0
响应标题
Allow:POST,GET,OPTIONS,HEAD
Content-Length:0
Date:Wed, 30 Nov 2011 02:13:21 GMT
Server:Jetty(7.5.4.v20111024)
解决方案
阿罗哈,
我也进行了一段时间的斗争,发现最终的节点必须是:
<filter-mapping>
<filter-name>cross-origin</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
不是
<filter-mapping>
<filter-name>cross-origin</filter-name>
<filter-pattern>/*</filter-pattern>
</filter-mapping>
这是我发现帮助我的链接: wiki.eclipse.org/jetty/feature/cross_origin_filter
更新我的Web.xml文件并重新启动Jetty Server后,我能够使用jQuery ajax呼叫做出跨域请求。
抢
其他提示
当对部署到GAE的Web应用程序进行CrossDomain调用时,我遇到了这一点。您可以在servlet响应中添加一个明确的标题,例如:
public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException
{
res.addHeader("Access-Control-Allow-Origin", "*");
...
}
还要确保您在战争的根源中有一个crossdomain.xml策略文件,例如:
<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="*"/>
</cross-domain-policy>
Hth。
我在Jetty Web服务器中的ActiveMQ Ajax遇到了同样的问题。我的问题是,允许的标题 场不接受“*”形式的通配符.
为了使ActiveMQ Ajax工作,我还必须在允许的方法中添加“选项”方法。
web.xml的交叉原始过滤器:
<filter>
<filter-name>cross-origin</filter-name>
<filter-class>org.eclipse.jetty.servlets.CrossOriginFilter</filter-class>
<init-param>
<param-name>allowedOrigins</param-name>
<param-value>*</param-value>
</init-param>
<init-param>
<param-name>allowedMethods</param-name>
<param-value>GET,POST,OPTIONS,DELETE,PUT,HEAD</param-value>
</init-param>
<init-param>
<param-name>allowedHeaders</param-name>
<param-value>origin, content-type, accept, authorization</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>cross-origin</filter-name>
<url-pattern>*</url-pattern>
</filter-mapping>
对我(Jetty-version 8.1.5.v20120716)仅在'web.xml'中仅此行:
<filter>
<filter-name>cross-origin</filter-name>
<filter-class>org.eclipse.jetty.servlets.CrossOriginFilter</filter-class>
<init-param>
<param-name>allowedOrigins</param-name>
<param-value>*</param-value>
</init-param>
<init-param>
<param-name>allowedMethods</param-name>
<param-value>GET,POST,DELETE,PUT,HEAD</param-value>
</init-param>
<init-param>
<param-name>allowedHeaders</param-name>
<param-value>origin, content-type, accept</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>cross-origin</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
我将日志级别更改为调试并获取从Jetty Console Log中获取信息(例如'get,post,post,delete,put,head,head,head,head,head,head,content-type,accept')。例如:
Debug Crossoriginfilter:359-方法删除是允许的方法之一[获取,邮寄,删除,put,head] 19:14:28,413
Debug CrossoriginFilter:389-标题[原点,内容类型,接受]不在允许的标题中[*
然后我用$ .ajax({url:'elether -host',type:'delete',..})检查了结果
浪费了很多时间后,刚刚打开了一个错误报告:
https://bugs.eclipse.org/bugs/show_bug.cgi?id=384847
还要意识到,参数值中的通配符大多不支持以下事实。 (即允许的标题)
