我试图覆盖Grails的springwebsocket插件的默认配置,如下所示:
@Configuration
@EnableWebSocketMessageBroker
class CorsWebSocketConfig extends AbstractWebSocketMessageBrokerConfigurer {
@Override
void configureMessageBroker(MessageBrokerRegistry messageBrokerRegistry) {
messageBrokerRegistry.enableSimpleBroker "/queue", "/topic"
messageBrokerRegistry.setApplicationDestinationPrefixes "/app"
}
@Override
void registerStompEndpoints(StompEndpointRegistry stompEndpointRegistry) {
StompWebSocketEndpointRegistration registration = stompEndpointRegistry.addEndpoint("/stomp")
registration.setAllowedOrigins('http://localhost', 'http://localhost:8080')
registration.withSockJS().setSupressCors(false)
}
// [...]
}
我也尝试通过做一个.setAllowedOrigins('*'),但它仍然不起作用。
但是,当我注册我的客户端时,"访问控制-允许-源"标头永远不会在/stomp/info 端点上设置。我总是得到"XMLHttpRequest 无法加载 http://localhost:8080/app/stomp/info。请求的资源上不存在"访问控制允许源"标头。因此,不允许访问原产地'http://localhost'。
我使用 https://github.com/davidtinker/grails-cors 的信息解决了这个问题。Grails-cors插件不适用于grails 3.x,但存储库自述文件中有一些信息。我将在此处复制/粘贴它:
此插件不适用于 Grails 3。要在Grails 3项目中处理CORS,您只需在src/main/java下创建一个servlet过滤器:
@Priority(Integer.MIN_VALUE)
public class CorsFilter extends OncePerRequestFilter {
public CorsFilter() { }
@Override
protected void doFilterInternal(HttpServletRequest req, HttpServletResponse resp, FilterChain chain)
throws ServletException, IOException {
String origin = req.getHeader("Origin");
boolean options = "OPTIONS".equals(req.getMethod());
if (options) {
if (origin == null) return;
resp.addHeader("Access-Control-Allow-Headers", "origin, authorization, accept, content-type, x-requested-with");
resp.addHeader("Access-Control-Allow-Methods", "GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS");
resp.addHeader("Access-Control-Max-Age", "3600");
}
resp.addHeader("Access-Control-Allow-Origin", origin == null ? "*" : origin);
resp.addHeader("Access-Control-Allow-Credentials", "true");
if (!options) chain.doFilter(req, resp);
}
}
引用grails-app/conf/spring/resources.groovy中的过滤器:
beans = {
corsFilter(CorsFilter)
}
希望这对某人有所帮助。
我将Grails-3.0.2/Grails-Spring-WebSocket-2.0.0示例应用程序推送到 https://github.com/zyro23/so-30891198 这表明它应该可以工作。
curl -H "Origin: http://localhost:8080" --verbose http://localhost:8080/stomp/info
HTTP/1.1 200 OK
Access-Control-Allow-Origin: http://localhost:8080
curl -H "Origin: http://localhost" --verbose http://localhost:8080/stomp/info
HTTP/1.1 200 OK
Access-Control-Allow-Origin: http://localhost
第二个示例使用 grails-2.5.0/spring-websocket-1.3.0:https://github.com/zyro23/so-30891198-2
curl -H "Origin: http://localhost:8080" --verbose http://localhost:8080/so-30891198-2/stomp/info
HTTP/1.1 200 OK
Access-Control-Allow-Origin: http://localhost:8080
curl -H "Origin: http://localhost" --verbose http://localhost:8080/so-30891198-2/stomp/info
HTTP/1.1 200 OK
Access-Control-Allow-Origin: http://localhost