|
|
@@ -139,10 +139,10 @@ public class OssRouterHandler extends SimpleChannelInboundHandler<HttpObject> {
|
|
|
// 允许的方法
|
|
|
h.set(HttpHeaderNames.ACCESS_CONTROL_ALLOW_METHODS, "GET, POST, PUT, DELETE, OPTIONS");
|
|
|
// 允许的自定义 Header (必须包含 JWT 用的 Authorization 和大文件用的 Range)
|
|
|
- h.set(HttpHeaderNames.ACCESS_CONTROL_ALLOW_HEADERS,
|
|
|
- "Authorization, Content-Type, Range, X-Tenant-ID, X-Requested-With");
|
|
|
+ //h.set(HttpHeaderNames.ACCESS_CONTROL_ALLOW_HEADERS, "Authorization, Content-Type, Range, X-Tenant-ID, X-Requested-With");
|
|
|
+ h.set(HttpHeaderNames.ACCESS_CONTROL_ALLOW_HEADERS, "*");
|
|
|
// 允许携带 Cookie (如果需要)
|
|
|
- h.set(HttpHeaderNames.ACCESS_CONTROL_ALLOW_CREDENTIALS, "true");
|
|
|
+ h.set(HttpHeaderNames.ACCESS_CONTROL_ALLOW_CREDENTIALS, "false");
|
|
|
// 预检缓存时间 (1小时),减少频繁的 OPTIONS 请求
|
|
|
h.set(HttpHeaderNames.ACCESS_CONTROL_MAX_AGE, "3600");
|
|
|
|
