package com.hy.fliter;import java.io.IOException;import javax.servlet.Filter;import javax.servlet.FilterChain;import javax.servlet.FilterConfig;import javax.servlet.ServletException;import javax.servlet.ServletRequest;import javax.servlet.ServletResponse;import javax.servlet.http.HttpServletRequest;import javax.servlet.http.HttpServletResponse;import org.apache.commons.httpclient.HttpStatus;/*** Created by WangShuai on 2016/7/30.*/public class CorsFilter implements Filter {@Overridepublic void init(FilterConfig filterConfig) throws ServletException { }@Overridepublic void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {HttpServletResponse response = (HttpServletResponse) servletResponse;HttpServletRequest request = (HttpServletRequest) servletRequest;// 指定允許其他域名訪問response.setHeader("Access-Control-Allow-Origin", "*");// 響應(yīng)類型response.setHeader("Access-Control-Allow-Methods", "POST, GET, DELETE, OPTIONS, DELETE");// 響應(yīng)頭設(shè)置response.setHeader("Access-Control-Allow-Headers", "Content-Type, x-requested-with, X-Custom-Header, HaiYi-Access-Token");if ("OPTIONS".equals(request.getMethod())){response.setStatus(HttpStatus.SC_NO_CONTENT);}filterChain.doFilter(servletRequest, servletResponse);}@Overridepublic void destroy() { }}

<filter><filter-name>cors</filter-name><filter-class>com.hy.fliter.CorsFilter</filter-class></filter><filter-mapping><filter-name>cors</filter-name><url-pattern>/*</url-pattern></filter-mapping>