Rev 35386 | Blame | Compare with Previous | Last modification | View Log | RSS feed
package com.spice.profitmandi.common.web.filter;import java.io.IOException;import javax.servlet.Filter;import javax.servlet.FilterChain;import javax.servlet.FilterConfig;import javax.servlet.ServletException;import javax.servlet.ServletRequest;import javax.servlet.ServletResponse;import javax.servlet.http.HttpServletRequest;import javax.servlet.http.HttpServletResponse;import org.apache.logging.log4j.LogManager;import org.apache.logging.log4j.Logger;public class CorsFilter implements Filter {private static final Logger LOGGER = LogManager.getLogger(CorsFilter.class);@Overridepublic void init(FilterConfig filterConfig) throws ServletException {LOGGER.info("CorsFilter initialized");}@Overridepublic void doFilter(ServletRequest req, ServletResponse res, FilterChain chain)throws IOException, ServletException {HttpServletResponse response = (HttpServletResponse) res;HttpServletRequest request = (HttpServletRequest) req;LOGGER.debug("CorsFilter processing request: {} {}", request.getMethod(), request.getRequestURI());response.setHeader("Access-Control-Allow-Origin", "*");response.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS, DELETE, PUT");response.setHeader("Access-Control-Max-Age", "3600");response.setHeader("Access-Control-Allow-Headers", "Content-Type, Access-Control-Allow-Headers, Auth-Token, X-Requested-With, Idempotencykey");response.setHeader("Cross-Origin-Opener-Policy", "unsafe-none");response.setHeader("Cross-Origin-Resource-Policy", "unsafe-none");response.setHeader("Access-Control-Allow-Credentials", "true");if ("OPTIONS".equalsIgnoreCase(request.getMethod())) {response.setStatus(HttpServletResponse.SC_OK);return;}chain.doFilter(req, res);}@Overridepublic void destroy() {}}