CORS – Tomcat – Geoserver

by

I need to do the same to avoid the usage of a proxy in OpenLayers.

Since I’m running Ubuntu 12.04, I’ve installed Tomcat 7.0.55, instead of the default 7.0.26 (installed from packages).

To add CORS headers, I simply added to $CATALINA_HOME/conf/web.xml the following lines:

<filter>
  <filter-name>CorsFilter</filter-name>
  <filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
  <init-param>
    <param-name>cors.allowed.origins</param-name>
    <param-value>*</param-value>
  </init-param>
</filter>
<filter-mapping>
  <filter-name>CorsFilter</filter-name>
  <url-pattern>/*</url-pattern>
</filter-mapping>

and then restart tomcat.

For example, when I try to fetch from Geoserver the URL http://development.localhost.lan/geoserver/wfs from my application running on http://localhost:3000 I get the following headers:

Requested headers:

POST /geoserver/wfs HTTP/1.1
Host: development.localhost.lan
Origin: http://localhost:3000
X-Requested-With: XMLHttpRequest
(...)

Response headers:

Access-Control-Allow-Credentials:true
Access-Control-Allow-Origin:http://localhost:3000
Connection:Keep-Alive
Content-Disposition:inline; filename=geoserver-GetFeature.text
Content-Encoding:gzip
Content-Length:469
Content-Type:text/xml; subtype=gml/3.1.1
Date:Tue, 29 Jul 2014 21:31:08 GMT
Keep-Alive:timeout=5, max=100
Server:Apache-Coyote/1.1

This worked with Chrome (Ver. 35.0.1916.153) and Firefox (Ver. 31.0).

More Related Contents:

  1. How to set the context path of a web application in Tomcat 7.0
  2. org.apache.tomcat.util.bcel.classfile.ClassFormatException: Invalid byte tag in constant pool: 15 – Tomcat 7, JDK incompatibilty? [duplicate]
  3. how to enable hot deploy in tomcat
  4. How should I connect to JDBC database / datasource in a servlet based application?
  5. How to change the ROOT application?
  6. CORS error on same domain?
  7. Firefox ‘Cross-Origin Request Blocked’ despite headers [closed]
  8. Understanding AJAX CORS and security considerations
  9. What are the integrity and crossorigin attributes?
  10. Adding an external directory to Tomcat classpath
  11. Cross-Domain AJAX doesn’t send X-Requested-With header
  12. CORS support for PUT and DELETE with ASP.NET Web API
  13. How can I specify system properties in Tomcat configuration on startup?
  14. IntelliJ and Tomcat….changed files are not automatically recognized by Tomcat
  15. Absolute path & Relative Path
  16. Get ServletContext in JAX-RS resource
  17. Tomcat 8 Maven Plugin for Java 8
  18. Exposing resources from jar files in web applications (Tomcat7)
  19. Increase Tomcat memory settings [duplicate]
  20. Tomcat manager remote deploy script
  21. Disable cross domain web security in Firefox
  22. Custom java.util.logging Handler in tomcat
  23. 403 Access Denied on Tomcat 8 Manager App without prompting for user/password
  24. Is security-constraint configuration for Tomcat mandatory?
  25. Retrieve current Windows user in Java EE web application for Single Sign On purposes
  26. Enable CORS in Golang
  27. Tomcat 7.0.43 “INFO: Error parsing HTTP request header”
  28. How does Tomcat find the HOME PAGE of my Web App?
  29. Enabling SSL on tomcat using pem file
  30. How to avoid storing passwords in the clear for tomcat’s server.xml Resource definition of a DataSource?

Leave a Comment