Skip to content

Commit 9e33d33

Browse files
alankoo1995alankoo1995
committed
hot fix
1 parent 9df529a commit 9e33d33

File tree

1 file changed

+35
-0
lines changed

1 file changed

+35
-0
lines changed

backend/src/main/java/comp9323/group12/backend/config/SecurityConfig.java

Lines changed: 35 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -3,8 +3,11 @@
33

44
import comp9323.group12.backend.component.auth.RestAuthenticationFailureHandler;
55
import comp9323.group12.backend.component.auth.RestAuthenticationSuccessHandler;
6+
import org.apache.catalina.filters.CorsFilter;
67
import org.springframework.beans.factory.annotation.Autowired;
8+
import org.springframework.boot.web.servlet.FilterRegistrationBean;
79
import org.springframework.context.annotation.Bean;
10+
import org.springframework.core.Ordered;
811
import org.springframework.http.HttpMethod;
912
import org.springframework.security.config.Customizer;
1013
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
@@ -58,9 +61,41 @@ CorsConfigurationSource corsConfigurationSource() {
5861
CorsConfiguration configuration = new CorsConfiguration();
5962
configuration.setAllowedOrigins(Arrays.asList("*"));
6063
configuration.setAllowedMethods(Arrays.asList("GET","POST", "OPTIONS", "PUT", "DELETE"));
64+
configuration.setAllowedHeaders(Arrays.asList("X-Requested-With", "Origin", "Content-Type", "Accept",
65+
"Authorization", "Access-Control-Allow-Credentials", "Access-Control-Allow-Headers", "Access-Control-Allow-Methods",
66+
"Access-Control-Allow-Origin", "Access-Control-Expose-Headers", "Access-Control-Max-Age",
67+
"Access-Control-Request-Headers", "Access-Control-Request-Method", "Age", "Allow", "Alternates",
68+
"Content-Range", "Content-Disposition", "Content-Description"));
69+
configuration.setAllowCredentials(true);
6170
UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
6271
source.registerCorsConfiguration("/**", configuration);
6372
return source;
6473
}
74+
75+
// @Bean
76+
// public FilterRegisterationBean conrsfileter() {
77+
// UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
78+
// CorsConfiguration config = new CorsConfiguration();
79+
// config.setAllowCredentials(true);
80+
// config.addAllowedOrigin("*");
81+
// config.addAllowedHeader("*");
82+
// config.addAllowedMethod("*");
83+
// source.registerCorsConfiguration("/**", config);
84+
// FilterRegistrationBean bean = new FilterRegistrationBean(new CorsFilter(source));
85+
// bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
86+
// }
87+
//@Bean
88+
//public FilterRegistrationBean corsFilter() {
89+
// UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
90+
// CorsConfiguration config = new CorsConfiguration();
91+
// config.setAllowCredentials(true);
92+
// config.addAllowedOrigin("*");
93+
// config.addAllowedHeader("*");
94+
// config.addAllowedMethod("*");
95+
// source.registerCorsConfiguration("/**", config);
96+
// FilterRegistrationBean bean = new FilterRegistrationBean(new CorsFilter(source));
97+
// bean.setOrder(Ordered.HIGHEST_PRECEDENCE);
98+
// return bean;
99+
//}
65100
}
66101

0 commit comments

Comments
 (0)