spring cloud gatewayThe ‘Access-Control-Allow-Origin’ header contains multiple values “*, *”, but only one is allowed.

原创 2019-07-16 20:53 阅读(5253)次

spring cloud gateway网关中加入了跨域支持,但是报了:

The ‘Access-Control-Allow-Origin’ header contains multiple values “*, *”, but only one is allowed.

错误显示设置了两次Access-Control-Allow-Origin:*,但我的代码我确定只设置了一次,怀疑是哪出了问题,找了一上午问题,百度到说是gateway的bug

我的版本:

spring cloud gateway:2.1.2

spring cloud: Greenwich.SR2

解决办法如下:

设置跨域:

  1. import org.springframework.cloud.client.discovery.DiscoveryClient;
  2. import org.springframework.cloud.gateway.discovery.DiscoveryClientRouteDefinitionLocator;
  3. import org.springframework.cloud.gateway.discovery.DiscoveryLocatorProperties;
  4. import org.springframework.cloud.gateway.route.RouteDefinitionLocator;
  5. import org.springframework.context.annotation.Bean;
  6. import org.springframework.context.annotation.Configuration;
  7. import org.springframework.http.HttpHeaders;
  8. import org.springframework.http.HttpMethod;
  9. import org.springframework.http.HttpStatus;
  10. import org.springframework.http.codec.ServerCodecConfigurer;
  11. import org.springframework.http.codec.support.DefaultServerCodecConfigurer;
  12. import org.springframework.http.server.reactive.ServerHttpRequest;
  13. import org.springframework.http.server.reactive.ServerHttpResponse;
  14. import org.springframework.web.cors.reactive.CorsUtils;
  15. import org.springframework.web.server.ServerWebExchange;
  16. import org.springframework.web.server.WebFilter;
  17. import org.springframework.web.server.WebFilterChain;
  19. import reactor.core.publisher.Mono;
  21. @Configuration  
  22. public class CorsConfig {   
  24.     private static final String MAX_AGE = "18000L";
  25.     @Bean
  26.     public WebFilter corsFilter() {
  27.         return (ServerWebExchange ctx, WebFilterChain chain) -> {
  28.             ServerHttpRequest request = ctx.getRequest();
  30.             if (CorsUtils.isCorsRequest(request)) {
  31.                 HttpHeaders requestHeaders = request.getHeaders();
  32.                 ServerHttpResponse response = ctx.getResponse();
  33.                 HttpMethod requestMethod = requestHeaders.getAccessControlRequestMethod();
  34.                 HttpHeaders headers = response.getHeaders();
  35.                 headers.add(HttpHeaders.ACCESS_CONTROL_ALLOW_ORIGIN, requestHeaders.getOrigin());
  36.                 headers.addAll(HttpHeaders.ACCESS_CONTROL_ALLOW_HEADERS, requestHeaders
  37.                         .getAccessControlRequestHeaders());
  38.                 if(requestMethod != null){
  39.                     headers.add(HttpHeaders.ACCESS_CONTROL_ALLOW_METHODS, requestMethod.name());
  40.                 }
  41.                 headers.add(HttpHeaders.ACCESS_CONTROL_ALLOW_CREDENTIALS, "true");
  42.                 headers.add(HttpHeaders.ACCESS_CONTROL_EXPOSE_HEADERS, "*");
  43.                 headers.add(HttpHeaders.ACCESS_CONTROL_MAX_AGE, MAX_AGE);
  44.                 if (request.getMethod() == HttpMethod.OPTIONS) {
  45.                     response.setStatusCode(HttpStatus.OK);
  46.                     return Mono.empty();
  47.                 }
  48.             }
  49.             return chain.filter(ctx);
  50.         };
  51.     }
  52.     @Bean
  53.     public ServerCodecConfigurer serverCodecConfigurer() {
  54.         return new DefaultServerCodecConfigurer();
  55.     }
  56.     /**
  57.      * 如果使用了注册中心(如:Eureka),进行控制则需要增加如下配置
  58.      */
  59.     @Bean
  60.     public RouteDefinitionLocator discoveryClientRouteDefinitionLocator(DiscoveryClient discoveryClient,
  61.                                                                         DiscoveryLocatorProperties properties) {
  62.         return new DiscoveryClientRouteDefinitionLocator(discoveryClient, properties);
  63.     }
  64. }
修改响应头,去掉*:

  1. import java.util.ArrayList;
  3. import org.springframework.cloud.gateway.filter.GatewayFilterChain;
  4. import org.springframework.cloud.gateway.filter.GlobalFilter;
  5. import org.springframework.cloud.gateway.filter.NettyWriteResponseFilter;
  6. import org.springframework.core.Ordered;
  7. import org.springframework.http.HttpHeaders;
  8. import org.springframework.stereotype.Component;
  9. import org.springframework.web.server.ServerWebExchange;
  11. import reactor.core.publisher.Mono;
  13. @Component("corsResponseHeaderFilter")
  14. public class CorsResponseHeaderFilter implements GlobalFilter, Ordered {
  16.     @Override
  17.     public int getOrder() {
  18.         // 指定此过滤器位于NettyWriteResponseFilter之后
  19.         // 即待处理完响应体后接着处理响应头
  20.         return NettyWriteResponseFilter.WRITE_RESPONSE_FILTER_ORDER + 1;
  21.     }
  23.     @Override
  24.     public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain) {
  25.         return chain.filter(exchange).then(Mono.defer(() -> {
  26.             exchange.getResponse().getHeaders().entrySet().stream()
  27.                     .filter(kv -> (kv.getValue() != null && kv.getValue().size() > 1))
  28.                     .filter(kv -> (kv.getKey().equals(HttpHeaders.ACCESS_CONTROL_ALLOW_ORIGIN)
  29.                             || kv.getKey().equals(HttpHeaders.ACCESS_CONTROL_ALLOW_CREDENTIALS)))
  30.                     .forEach(kv -> {
  31.                         kv.setValue(new ArrayList<String>() {{
  32.                             add(kv.getValue().get(0));
  33.                         }});
  34.                     });
  36.             return chain.filter(exchange);
  37.         }));
  38.     }
  39. }

参考:https://blog.csdn.net/xht555/article/details/89484091

上一篇:spring cloud gateway报错Only one connection receive subscriber allowed
下一篇:spring cloud中Feign调用诡异报错MethodNotAllowed: status 405 reading

相关文章

推荐文章

热门文章

标签列表