From 9521edaa4375672446b689a52ec12526f495d1d7 Mon Sep 17 00:00:00 2001 From: msksbr515 Date: Sun, 24 May 2026 20:37:41 +0800 Subject: [PATCH] feat(config): add CORS configuration for development environment - configure global CORS policy allowing all origins, headers, and methods - register CorsFilter bean for cross-origin request handling - bump version to v0.1f --- build.gradle.kts | 2 +- .../com/msksbr/bookmgr/config/CorsConfig.kt | 31 +++++++++++++++++++ 2 files changed, 32 insertions(+), 1 deletion(-) create mode 100644 src/main/kotlin/com/msksbr/bookmgr/config/CorsConfig.kt diff --git a/build.gradle.kts b/build.gradle.kts index a2a4270..7974c33 100644 --- a/build.gradle.kts +++ b/build.gradle.kts @@ -7,7 +7,7 @@ plugins { } group = "com.msksbr" -version = "v0.1" +version = "v0.1f" description = "bookMgr" java { diff --git a/src/main/kotlin/com/msksbr/bookmgr/config/CorsConfig.kt b/src/main/kotlin/com/msksbr/bookmgr/config/CorsConfig.kt new file mode 100644 index 0000000..71a993e --- /dev/null +++ b/src/main/kotlin/com/msksbr/bookmgr/config/CorsConfig.kt @@ -0,0 +1,31 @@ +package com.msksbr.bookmgr.config + +import org.springframework.context.annotation.Bean +import org.springframework.context.annotation.Configuration +import org.springframework.web.cors.CorsConfiguration +import org.springframework.web.cors.UrlBasedCorsConfigurationSource +import org.springframework.web.filter.CorsFilter + +/* +* CORS 跨域配置 +* 配置全局 CORS 策略,允许所有来源(origins)、请求头(headers)和 HTTP 方法 +* 适用于前后端分离架构下的开发环境;生产环境建议按需收紧 allowedOrigins +*/ +@Configuration +class CorsConfig { + /* + * 注册 CorsFilter Bean + * 拦截所有 / 路径并应用允许跨域的配置 + */ + @Bean + fun corsFilter(): CorsFilter { + val config = CorsConfiguration() + config.addAllowedOrigin("*") + config.addAllowedHeader("*") + config.addAllowedMethod("*") + + val source = UrlBasedCorsConfigurationSource() + source.registerCorsConfiguration("/**", config) + return CorsFilter(source) + } +} \ No newline at end of file