|
|
@@ -25,13 +25,12 @@ public class AuthFilter extends ZuulFilter {
|
|
|
RequestContext requestContext = RequestContext.getCurrentContext();
|
|
|
requestContext.getZuulRequestHeaders().put("HTTP_X_FORWARDED_FOR", getRealIp(requestContext.getRequest()));
|
|
|
HttpServletResponse response = requestContext.getResponse();
|
|
|
- /*String origin = requestContext.getRequest().getHeader("Origin");
|
|
|
+ String origin = requestContext.getRequest().getHeader("Origin");
|
|
|
if (origin != null && origin.endsWith(".lexiaoya.cn")) {
|
|
|
response.setHeader("Access-Control-Allow-Origin", origin);
|
|
|
- }*/
|
|
|
- response.setHeader("Access-Control-Allow-Origin", "*");
|
|
|
+ }
|
|
|
response.setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS");
|
|
|
- response.setHeader("Access-Control-Allow-Headers", "Access-Control-Allow-Origin, Cache-Control, TOKEN, Accept, content-type, Origin, X-Requested-With, Content-Type, Last-Modified, REQ-IDENTITY, Authorization");
|
|
|
+ response.setHeader("Access-Control-Allow-Headers", "Content-Type, Authorization");
|
|
|
response.setHeader("Access-Control-Allow-Credentials", "true");
|
|
|
response.setHeader("Access-Control-Max-Age", "3600");
|
|
|
return null;
|
