-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathbonita-web.xml
35 lines (30 loc) · 1.5 KB
/
bonita-web.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
<filter>
<filter-name>CorsFilter</filter-name>
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
<init-param>
<param-name>cors.allowed.origins</param-name>
<param-value>http://localhost:8081</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.methods</param-name>
<param-value>GET, HEAD, POST, PUT, DELETE, OPTIONS</param-value>
</init-param>
<init-param>
<param-name>cors.support.credentials</param-name>
<param-value>true</param-value>
</init-param>
<!-- List of the response headers other than simple response headers that the browser should expose to
the author of the cross-domain request through the XMLHttpRequest.getResponseHeader() method.
The CORS filter supplies this information through the Access-Control-Expose-Headers header. -->
<init-param>
<param-name>cors.exposed.headers</param-name>
<param-value>Access-Control-Allow-Origin,Access-Control-Allow-Credentials,X-Bonita-API-Token</param-value>
</init-param>
<!-- The names of the supported author request headers. These are advertised through the Access-Control-Allow-Headers header.
The CORS Filter implements this by simply echoing the requested value back to the browser.
-->
<init-param>
<param-name>cors.allowed.headers</param-name>
<param-value>Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers,X-Bonita-API-Token</param-value>
</init-param>
</filter>