|
|
@@ -149,10 +149,11 @@ public class VerifyInterceptor extends HandlerInterceptorAdapter {
|
|
|
* @param response
|
|
|
*/
|
|
|
public boolean crossDomain(HttpServletRequest request, HttpServletResponse response) {
|
|
|
- response.setHeader("Access-Control-Allow-Origin", "*");
|
|
|
-
|
|
|
- response.setHeader("Access-Control-Allow-Headers", "*");
|
|
|
+ response.setHeader("Access-Control-Allow-Origin", request.getHeader("Origin"));
|
|
|
|
|
|
+ response.setHeader("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept," +
|
|
|
+ "token,sign,v,plat,timestamp,appKey");
|
|
|
+ response.setHeader("Access-Control-Allow-Credentials","true");
|
|
|
response.setHeader("Access-Control-Allow-Methods","PUT,POST,GET,DELETE,OPTIONS");
|
|
|
String method= request.getMethod();
|
|
|
if (method.equals("OPTIONS")){
|
