43 lines
3.3 KiB
Go
43 lines
3.3 KiB
Go
package core
|
||
|
||
import (
|
||
"fmt"
|
||
"github.com/gin-gonic/gin"
|
||
"net/http"
|
||
"strings"
|
||
)
|
||
|
||
// Cors 跨域中间件
|
||
func Cors() gin.HandlerFunc {
|
||
return func(c *gin.Context) {
|
||
method := c.Request.Method // 请求方法
|
||
origin := c.Request.Header.Get("Origin") // 请求头部
|
||
var headerKeys []string // 声明请求头keys
|
||
for k, _ := range c.Request.Header {
|
||
headerKeys = append(headerKeys, k)
|
||
}
|
||
headerStr := strings.Join(headerKeys, ", ")
|
||
if headerStr != "" {
|
||
headerStr = fmt.Sprintf("access-control-allow-origin, access-control-allow-headers, %s", headerStr)
|
||
} else {
|
||
headerStr = "access-control-allow-origin, access-control-allow-headers"
|
||
}
|
||
if origin != "" {
|
||
c.Writer.Header().Set("Access-Control-Allow-Origin", "*")
|
||
c.Header("Access-Control-Allow-Origin", "*") // 允许访问所有域
|
||
c.Header("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE, UPDATE") // 服务器支持的所有跨域请求的方法
|
||
c.Header("Access-Control-Allow-Headers", "Authorization, Content-Length, X-CSRF-Token, Token, session, X_Requested_With, Accept, Origin, Host, Connection, Accept-Encoding, Accept-Language, DNT, X-CustomHeader, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type, Pragma") // 允许的头类型
|
||
c.Header("Access-Control-Expose-Headers", "Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers, Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, FooBar") // 允许跨域设置,可以返回其他子段
|
||
c.Header("Access-Control-Max-Age", "172800") // 缓存请求信息,单位为秒
|
||
c.Header("Access-Control-Allow-Credentials", "false") // 跨域请求是否需要带cookie信息,默认设置为true
|
||
c.Set("content-type", "application/json;charset=utf8") // 设置返回格式是json
|
||
}
|
||
// 放行所有OPTIONS方法
|
||
if method == "OPTIONS" {
|
||
c.JSON(http.StatusOK, "Options Request!")
|
||
}
|
||
// 处理请求
|
||
c.Next()
|
||
}
|
||
}
|