代码之家  ›  专栏  ›  技术社区  ›  davecar21

JasperServer被CORS策略阻止:没有“访问控制允许源站”

jasperserver cors tomcat apache
  •  0
  • davecar21  · 技术社区  · 7 年前

    我正在尝试在jasperserver中启用CORS策略。

    我使用angular HTTPClient调用来自jasperserver的API。

    修改apache tomcat apache tomcat\conf\网站.xml文件 

    <filter>
    <filter-name>CorsFilter</filter-name>
    <filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
    <init-param>
        <param-name>cors.allowed.origins</param-name>
        <param-value>*</param-value>
    </init-param>
    <init-param>
        <param-name>cors.allowed.headers</param-name>
        <param-value>Content-Type,X-Requested-With,Accept,Authorization,Origin,Access-Control-Request-Method,Access-Control-Request-Headers</param-value>
    </init-param>
    <init-param>
        <param-name>cors.exposed.headers</param-name>
        <param-value>Access-Control-Allow-Origin,Access-Control-Allow-Credentials</param-value>
    </init-param>
</filter>
<filter-mapping>
    <filter-name>CorsFilter</filter-name>
    <url-pattern> /* </url-pattern>
</filter-mapping>

    那是从 apache-tomcat

    添加下面的代码 

    <filter>
<filter-name>CorsFilter2</filter-name>
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
<init-param>
<param-name>cors.allowed.origins</param-name>
<param-value>*</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CorsFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>

    Error Encountered

    0 回复  |  直到 7 年前
        1
  •  0
  •   Angelos Anagnostopoulos    7 年前

    经过几个小时的努力,我终于明白了。

    /webapps/jasperserver/WEB-INF/web.xml . 全球tomcat不需要干预网站.xml. 

    <!-- Comment the built-in filter out.
    <filter>
       <filter-name>CorsFilter</filter-name>
       <filter-class>com.jaspersoft.jasperserver.api.security.csrf.CorsFilter</filter-class>
    </filter>
    -->

    <filter>
        <filter-name>CorsFilter</filter-name>
        <filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
        <init-param>
            <param-name>cors.allowed.origins</param-name>
            <!-- Tomcat 8.5+ doesn't allow '*' any longer in conjuction with 'cors.support.credentials' set to true.
             Instead, a specific comma separated list has to be set here. See https://bz.apache.org/bugzilla/show_bug.cgi?id=62343 -->
            <param-value>http://localhost:9000</param-value>
        </init-param>
        <init-param>
            <param-name>cors.allowed.methods</param-name>
            <param-value>GET,POST,HEAD,OPTIONS,PUT</param-value>
        </init-param>
        <init-param>
            <param-name>cors.allowed.headers</param-name>
            <!--- If requests contain an authorization header, it has to be added here as well -->
            <param-value>
                Content-Type,X-Requested-With,Accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers,X-Remote-Domain,Authorization
            </param-value>
        </init-param>
        <init-param>
            <param-name>cors.exposed.headers</param-name>
            <param-value>Access-Control-Allow-Origin,Access-Control-Allow-Credentials</param-value>
        </init-param>
        <init-param>
            <param-name>cors.support.credentials</param-name>
            <param-value>true</param-value>
        </init-param>
        <init-param>
            <param-name>cors.preflight.maxage</param-name>
            <param-value>10</param-value>
        </init-param>
    </filter>                
        .......

        <!-- Ensure your newly introduced mapping is first in line -->
            <filter-mapping>
                <filter-name>CorsFilter</filter-name>
                <url-pattern>/*</url-pattern>
            </filter-mapping>

        <!-- Also comment out any existing mappings for the built-in filter -->
        <!--
          <filter-mapping>
              <filter-name>CorsFilter</filter-name>
              <url-pattern>*.woff</url-pattern>
          </filter-mapping>
          <filter-mapping>
              <filter-name>CorsFilter</filter-name>
              <url-pattern>*.ttf</url-pattern>
          </filter-mapping>
          <filter-mapping>
              <filter-name>CorsFilter</filter-name>
              <url-pattern>*.svg</url-pattern>
          </filter-mapping>
          <filter-mapping>
              <filter-name>CorsFilter</filter-name>
              <url-pattern>*.eot</url-pattern>
          </filter-mapping>
        -->
    推荐文章
    Ilkhom Tashkulov  ·  (Spring)未满足的依赖项异常
    4 年前
    Naveen Kumar  ·  使用spring引导安全性的web应用程序中的循环依赖
    4 年前
    hhuntercu  ·  带Tomcat 9.0的DSpace 7.2-循环占位符引用“DSpace”。属性定义中的dir
    4 年前
    david  ·  Spring war文件“java.sql.SQLException:找不到适合jdbc:postgresql的驱动程序:”
    8 年前
    Rasool Ghafari  ·  如何在spring boot和嵌入式tomcat中设置mod_reqtimeout?
    8 年前
    gigashark  ·  部署生成的Maven Spring项目不起作用
    8 年前
    blackdog  ·  如何在Springboot中禁止'DELETE'http请求?
    8 年前
    Tristan Le Gacque  ·  ApachePOI:NoClassDefFoundError:org。阿帕奇。poi。openxml4j。例外情况。invalidFormatException无效格式异常
    8 年前
    Carlos Chávez  ·  Tomcat/Hibernate配置
    8 年前
    Created Bylucky  ·  我正在获取异常组织。阿帕奇。卡特琳娜。果心应用程序Dispatcher。invoke引发java异常。lang.IllegalStateException异常
    8 年前
    关于   移动版
    代码之家 - 一站式码农服务社区
    沪ICP备11025650号