我的目标是拥有一个使用Apache Tomcat 7的Web服务,并使用来自另一个域的Ajax请求与之进行通信。Web服务正在运行,但是我在JavaScript部分遇到了麻烦。
我的问题是,当我尝试使用基本身份验证执行任何请求时,当Tomcat给我请求时,标头将被删除:
String basicAuth = request.getHeader("Authorization");
该字符串始终为null。我想寻找答案,并且我猜问题出在我的web.xml配置中(并且因为我使用的是跨域请求)。
javaScript部分如下所示:
$.ajax({
type: 'GET',
url: 'http://localhost:8080/Test/endpoint/to/test',
dataType : 'json',
beforeSend: function (request) {
request.withCredentials = true;
request.setRequestHeader("Authorization", "Basic " + btoa('test' + ":" + 'test'));
},
success: function(data) {
console.log(data);
},
error: function(data) {
console.log(data);
}
});
我的web.xml文件如下所示:
<web-app xmlns="http://java.sun.com/xml/ns/j2ee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd"
version="2.4">
<display-name>File Explorer</display-name>
<description>
File Explorer
</description>
<servlet>
<servlet-name>Test</servlet-name>
<servlet-class>fr.vuzi.controller.FrontController</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>FrontController</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping>
<filter>
<filter-name>CorsFilter</filter-name>
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
<init-param>
<param-name>cors.allowed.origins</param-name>
<param-value></param-value>
</init-param>
<init-param>
<param-name>cors.allowed.methods</param-name>
<param-value>GET,POST,HEAD,OPTIONS,PUT</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.headers</param-name>
<param-value>Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers</param-value>
</init-param>
<init-param>
<param-name>cors.exposed.headers</param-name>
<param-value>Access-Control-Allow-Origin,Access-Control-Allow-Credentials</param-value>
</init-param>
<init-param>
<param-name>cors.support.credentials</param-name>
<param-value>true</param-value>
</init-param>
<init-param>
<param-name>cors.preflight.maxage</param-name>
<param-value>10</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CorsFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
</web-app>
(我对每个请求仅使用一个端点)。我已经尝试了几乎所有可以找到的东西,并且我不知道问题出在客户端还是服务器端。
我知道也有类似的问题:验证标头未发送JQuery Ajax,但是没有一种解决方案适合我。
提前致谢。
好的,那确实是tomcat配置问题,而不是JavaScript问题。这是对我有用的,允许跨域请求:
<filter>
<filter-name>CorsFilter</filter-name>
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
<init-param>
<param-name>cors.allowed.origins</param-name>
<param-value>*</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.methods</param-name>
<param-value>GET,POST,HEAD,OPTIONS,PUT,DELETE</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.headers</param-name>
<param-value>Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers,authorization,Authorization,accept,Accept</param-value>
</init-param>
<init-param>
<param-name>cors.support.credentials</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CorsFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>