From 4fc7909358cc62231c81b8e871749fc1b3fa69bd Mon Sep 17 00:00:00 2001
From: whyclxw <810412026@qq.com>
Date: 星期一, 25 十一月 2024 14:10:26 +0800
Subject: [PATCH] 测试提交（无用）

---
 src/main/java/com/whyc/filter/CrossDomainFilter.java |    4 ++--
 1 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/main/java/com/whyc/filter/CrossDomainFilter.java b/src/main/java/com/whyc/filter/CrossDomainFilter.java
index 28dcf04..f0f0871 100644
--- a/src/main/java/com/whyc/filter/CrossDomainFilter.java
+++ b/src/main/java/com/whyc/filter/CrossDomainFilter.java
@@ -39,7 +39,7 @@
                 allowedList = Arrays.asList(allowedCORSDomain);
                 if (allowedList.contains(origin)) {
                     resp.setHeader("Access-Control-Allow-Origin", origin);
-                    resp.setHeader("Access-Control-Allow-Headers", "X-Requested-With,content-type,token,content-disposition");
+                    resp.setHeader("Access-Control-Allow-Headers", "X-Requested-With,content-type,token");
                     //resp.setHeader("Access-Control-Allow-Methods", "GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH");
                     //resp.setHeader("Access-Control-Allow-Methods", "GET, HEAD, POST, PUT, DELETE, TRACE, PATCH");
                     resp.setHeader("Access-Control-Allow-Methods", "GET, POST");
@@ -74,7 +74,7 @@
         resp.setHeader("X-XSS-Protection","1; mode=block");
         resp.setHeader("X-Download-Options","noopen");
         resp.setHeader("Strict-Transport-Security","max-age=63072000; includeSubdomains; preload");
-
+        resp.setHeader("Access-Control-Expose-Headers", "Content-Disposition");
         //鍗曢〉闈㈠簲鐢�,鍙厑璁镐竴涓〉闈ndex.html
         String servletPath = req.getServletPath();
         if(servletPath.contains(".html")){

--
Gitblit v1.9.1