分类导航

程序问答发布时间：2022-06-02 发布网站：大佬教程 code.js-code.com

大佬教程收集整理的这篇文章主要介绍了oauth / token上的Spring Boot Rest Service选项401，大佬教程大佬觉得挺不错的，现在分享给大家，也给大家做个参考。

如何解决oauth / token上的Spring Boot Rest service选项401？

开发过程中遇到oauth / token上的Spring Boot Rest service选项401的问题如何解决？下面主要结合日常开发的经验，给出你关于oauth / token上的Spring Boot Rest service选项401的解决方法建议，希望对你解决oauth / token上的Spring Boot Rest service选项401有所启发或帮助；

您可以将此CORS过滤器添加到您的项目中

    @Component
    @Order(ordered.HIGHEST_PRECEDENCE)

    public class SimpleCORSFilter implements Filter {

    @OverrIDe
    public voID init(FilterConfig fC) throws servletexception {
    }

    @OverrIDe
    public voID doFilter(Servletrequest req, ServletResponse resp,
            FilterChain chain) throws IOException, servletexception {
        httpServletResponse response = (httpServletResponsE) resp;
        httpServletrequest request = (httpServletrequest) req;
        response.setheader("Access-Control-Allow-Origin", "*");
        response.setheader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, deletE");
        response.setheader("Access-Control-Max-Age", "3600");
        response.setheader("Access-Control-Allow-headers", "x-requested-with, authorization, Content-Type, Authorization, credential, X-XSRF-TOKEN");

        if ("OPTIONS".equalsIgnoreCase(request.getmethod())) {
            response.setStatus(httpServletResponse.SC_OK);
        } else {
            chain.doFilter(req, resp);
        }

    }

    @OverrIDe
    public voID destroy() {
    }

 }

解决方法

我正在使用Spring Boot进行简单的休息服务。为了在Angular 2中使用它，我在oauth/token端点上检索令牌时遇到了CORS问题。

Chrome中的错误消息如下。

错误信息

zone.js:101 OPTIONS http://192.168.0.9:8080/api/oauth/token 
XMLhttprequest cAnnot load http://192.168.0.9:8080/api/oauth/token. Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:3000' is therefore not allowed access. The response had http status code 401.

相关文件如下。

@H_292_2@myConfig.java

@Configuration
public class MyConfig {
    @Bean
    public WebMvcConfigurer corsConfigurer() {
        return new WebMvcConfigurerAdapter() {
            @Override
            public void addCorsmappings(CorsRegistry registry) {
                registry.addMapping("**")
                        .allowedOrigins("*").allowedMethods("POST,GET,HEAD,OPTIONS")
                .allowCredentials(true)
                .allowedHeaders("Content-Type,X-requested-With,accept,Origin,Access-Control-request-Method,Access-Control-request-Headers")
                .exposedHeaders("Access-Control-Allow-Origin,Access-Control-Allow-Credentials")
                .maxAge(10);
            }
        };
    }
}

OAuth2resourceServerConfig.java

@Configuration
@EnableresourceServer
class OAuth2resourceServerConfig extends resourceServerConfigurerAdapter {
    @Override
    public void configure(httpSecurity http) throws Exception {
        http
            .csrf().disable()
            .anonymous()
            .and()
                .authorizerequests()
                .antMatchers(httpR_75_11845@ethod.oPTIONS,"**").permitAll()
                .antMatchers("/authenticated/**").authenticated()
                ;
    }

}