Ajax Header 请求 "X-openIDM-Reauth-Password" 无效

Ajax Header Request "X-openIDM-Reauth-Password" not working

我有一个 openIDM 程序,当用户提交更新新密码时,它显示 "X-openIDM-Reauth-Password",其中包括我需要重新输入的旧密码。以下是 openidm 端的屏幕截图。

所以,我有自己的 UI,javascript ajax 方要求我进行以下 ajax 通话。

$.ajax({
        contentType: "application/json; charset=UTF-8",
        datatype: 'json',
        url: targetHost+"openidm/managed/user/"+userId,     
        xhrFields: {
            withCredentials: true,
        },
        headers: {
                    "X-Requested-With":"XMLHttpRequest" ,
                    "X-OpenIDM-Reauth-Password": oldPassword
                },
        crossDomain:true,

        data: JSON.stringify(data),
        type: 'PATCH',   
        success:function(result) {
            console.log("success");
            swal({
                title: updateSuccessMsgs.formSubmit.slogan,
                text: updateSuccessMsgs.formSubmit.success,
                type: "success"
            }, function() {
                window.location = "my-profile.html";
            });
        },
        error:function (error){
            sweetAlert(updateErrorMsgs.updateError.slogan, updateErrorMsgs.updateError.fail, "error");
            console.log(error);
        }
     });

它抛出了这个错误。

XMLHttpRequest cannot load http://localhost:9090/openidm/managed/user/09096425-4ff1-42d4-8a4d-3a6b5004afca. Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost' is therefore not allowed access.

谁能解释一下为什么?欣赏一下。

我找到了解决方案。我尝试在 servlet filter-cors.json 中添加一个值,如下所示。我在"allowedHeaders"中添加了"X-OpenIDM-Reauth-Password"的值,就成功了。

{
    "classPathURLs" : [ ],
    "systemProperties" : { },
    "requestAttributes" : { },
    "scriptExtensions" : { },
    "initParams" : {
        "allowedOrigins" : "*",
        "allowedMethods" : "GET,POST,PUT,DELETE,PATCH",
        "allowedHeaders" : "accept,x-openidm-password,x-openidm-nosession,x-openidm-username,content-type,origin,X-OpenIDM-Reauth-Password,x-requested-with",
        "allowCredentials" : "true",
        "chainPreflight" : "false"
    },
    "urlPatterns" : [
        "/*"
    ],
    "filterClass" : "org.eclipse.jetty.servlets.CrossOriginFilter"
}