1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17
| String[] allowDomain = {"http://loanstatic.gs.youyuwo.com", "http://loanstatic.youyuwo.com", "https://loanstatic.youyuwo.com", "http://gjj.youyuwo.com", "https://gjj.youyuwo.com", "http://www.huishuaka.com", "https://www.huishuaka.com", "http://loan.huishuaka.com", "https://loan.huishuaka.com"}; Set<String> allowedOrigins= new HashSet<>(Arrays.asList(allowDomain)); String originHeader = request.getHeader("Origin");
if (allowedOrigins.contains(originHeader)) { response.setHeader("Access-Control-Allow-Origin", originHeader); response.setHeader("Access-Control-Allow-Methods", "POST,GET,OPTIONS,DELETE"); response.setHeader("Access-Control-Allow-Headers", "Origin,No-Cache,X-Requested-With,If-Modified-Since,Pragma,Last-Modified,Cache-Control,Expires,Content-Type,X-E4M-With,userId,token"); response.setHeader("Access-Control-Allow-Credentials", "true"); response.setHeader("XDomainRequestAllowed", "1"); response.setHeader("Access-Control-Max-Age", "3600"); response.setContentType("application/json;charset=UTF-8"); }
|