首先ajax跨域请求携带cookies
一、需要设置前端withCredentials: true
$.ajax({
type:'post',
url: 'xxxxxxx',
dataType: 'json',
xhrFields: {
withCredentials: true //解决跨服务传递时不传递cookie的问题,允许携带证书
},
crossDomain: true, //允许跨域
success: function (data) {
console.info(data)
if (data.status == 200){
alert(data.data)
$("#shopping-num").html = data.data
}
}
})
二、需要设置服务器或者访问的文件Access-Control-Allow-Credentials true
还需要设置 Access-Control-Allow-Origin 的域名(重点)
如果是 Access-Control-Allow-Origin * 也会发生CORS错误
比如
php
java
//解决ajax携带cookie的跨域问题,使用@CrossOrigin注解冲突 public class CorsFilter implements Filter { @Override public void init(FilterConfig filterConfig) throws ServletException { } @Override public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException { HttpServletResponse response = (HttpServletResponse) res; HttpServletRequest reqs = (HttpServletRequest) req; // response.setHeader("Access-Control-Allow-Origin",reqs.getHeader("Origin")); //注意重点:下面的第二个参数不可以写*通配,需要明确写出请求方的IP地址及端口 response.setHeader("Access-Control-Allow-Origin","http://localhost:8081"); response.setHeader("Access-Control-Allow-Credentials", "true"); response.setHeader("Access-Control-Allow-Methods", "POST, GET, PATCH, DELETE, PUT"); response.setHeader("Access-Control-Max-Age", "3600"); response.setHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept"); chain.doFilter(req, res); } @Override public void destroy() { } }或者在服务器的config设置
apacheHeader set Access-Control-Allow-Credentials trueps:遇到的问题
当使用ajax 访问 localhost 时候不会携带cookies
比如
解决方案一、使用服务器的代理功能
server { listen 80; server_name www.test-crowdfunding.com; location / { root E:fontweb; index index.html index.htm; } error_page 500 502 503 504 /50x.html; location = /50x.html { root html; } location /api/ { proxy_pass http://localhost:9090/; } }二、也可以把 localhost 更换127.0.0.1
localhost
127.0.0.1
猜想当在同一域名下,有两个服务器,localhost找不到是哪个服务器比如 在同一台机器上有nginx(80端口),apache(8080端口)
当访问 localhost 时候找不到是 nginx 还是 apache
