Spring security 使用Spring添加CORS配置+;RSocket&x2B;网袋
如何添加CORS配置以限制一组允许的主机向通过RSocket公开的websocket发出请求 我尝试了@CrossOrigin注释,但没有任何运气,我也尝试了添加以下内容。我所能找到的关于RSocket的所有示例都不包括CORS/SSL等,它们都是构建任何严肃应用程序所必需的Spring security 使用Spring添加CORS配置+;RSocket&x2B;网袋,spring-security,rsocket,spring-rsocket,Spring Security,Rsocket,Spring Rsocket,如何添加CORS配置以限制一组允许的主机向通过RSocket公开的websocket发出请求 我尝试了@CrossOrigin注释,但没有任何运气,我也尝试了添加以下内容。我所能找到的关于RSocket的所有示例都不包括CORS/SSL等,它们都是构建任何严肃应用程序所必需的 @Bean CorsConfigurationSource corsConfiguration() { CorsConfiguration corsConfig = new CorsConf
@Bean
CorsConfigurationSource corsConfiguration() {
CorsConfiguration corsConfig = new CorsConfiguration();
corsConfig.applyPermitDefaultValues();
corsConfig.addAllowedMethod(HttpMethod.PUT);
corsConfig.addAllowedMethod(HttpMethod.DELETE);
corsConfig.setAllowedOrigins(Arrays.asList(FRONTEND_LOCALHOST, FRONTEND_STAGING));
UrlBasedCorsConfigurationSource source =
new UrlBasedCorsConfigurationSource();
source.registerCorsConfiguration("/**", corsConfig);
return source;
}
@Bean
CorsWebFilter corsWebFilter() {
CorsConfiguration corsConfig = new CorsConfiguration();
corsConfig.setAllowedOrigins(Arrays.asList("http://allowed-origin.com"));
corsConfig.setMaxAge(8000L);
corsConfig.addAllowedMethod("PUT");
corsConfig.addAllowedHeader("Baeldung-Allowed");
UrlBasedCorsConfigurationSource source =
new UrlBasedCorsConfigurationSource();
source.registerCorsConfiguration("/**", corsConfig);
return new CorsWebFilter(source);
}