It would be nice if there was native (optional) support to always grant access to preflight requests.
https://developer.mozilla.org/en-US/docs/Glossary/Preflight_request
In our JAX RS project, we added this to our filter:
@Override
protected boolean isAccessAllowed(ServletRequest request, ServletResponse response, Object mappedValue) {
if (isPreflightRequest(request)) {
return true;
}
return super.isAccessAllowed(request, response, mappedValue);
}
protected boolean isPreflightRequest(ServletRequest request) {
HttpServletRequest httpRequest = WebUtils.toHttp(request);
return httpRequest.getHeader("Origin") != null && httpRequest.getMethod().equals("OPTIONS");
}
It would be nice if there was native (optional) support to always grant access to preflight requests.
https://developer.mozilla.org/en-US/docs/Glossary/Preflight_request
In our JAX RS project, we added this to our filter: