这种问题一般都比较好解决,但是如果你依赖这种框架反而不好搞了。
异常显示你的请求跨域了,你在9105端口返回的页面上向9110发请求,浏览器肯定会禁掉你的请求,这应该不是spring security的问题。有可能是csrf的设置出现问题,
解决方法,保持csrf检查关闭,并且告诉浏览器在9105端口返回的页面允许跨域。
import javax.servlet.*;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
/*** 处理跨域问题*/
public class CrossDomainFilter implements Filter {
@Override
public void init(FilterConfig filterConfig) throws ServletException {
}
@Override
public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
HttpServletResponse response = (HttpServletResponse) servletResponse;
response.setHeader("Access-Control-Allow-Origin", "*");
response.setHeader("Access-Control-Allow-Methods", "POST, GET");
response.setHeader("Access-Control-Max-Age", "3600");
response.setHeader("Access-Control-Allow-Headers", "x-requested-with");
filterChain.doFilter(servletRequest, servletResponse);
}
@Override
public void destroy() {
}
}
核心就是在响应头添加跨域标识,至于拦截器用tomcat的filter还是spring的拦截器都可以。