springboot在filter中设置跨域

package com.yonghe.consultation.filter;

import com.fasterxml.jackson.databind.ObjectMapper;
import com.yonghe.consultation.common.ApiMessage;
import com.yonghe.consultation.common.constants.Constants;
import com.yonghe.consultation.common.enums.StatusCode;
import com.yonghe.consultation.common.util.UserUtils;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.lang3.ObjectUtils;
import org.springframework.core.annotation.Order;
import org.springframework.http.HttpStatus;

import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

/**
 * @author sunbin
 */
@Slf4j
@WebFilter(urlPatterns = "/*")
@Order(1)
public class TokenFilter implements Filter {

    private final ObjectMapper mapper;

    public TokenFilter(ObjectMapper mapper) {
        this.mapper = mapper;
    }

    @Override
    public void destroy() {
        log.info("filter destroy");
    }

    @Override
    public void doFilter(ServletRequest request, ServletResponse response,
                         FilterChain chain) throws IOException, ServletException {
        HttpServletRequest httpServletRequest = (HttpServletRequest) request;
        HttpServletResponse httpServletResponse = (HttpServletResponse) response;

        String originHeader = httpServletRequest.getHeader("Origin");
        httpServletResponse.setHeader("Access-Control-Allow-Origin", originHeader);
        httpServletResponse.addHeader("Access-Control-Allow-Headers", "Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With,requestid");
        httpServletResponse.addHeader("Access-Control-Allow-Credentials", "true");
        httpServletResponse.setHeader("Access-Control-Allow-Methods", "GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH");

        String method =httpServletRequest.getMethod();
        if ("OPTIONS".equals(method) || "PUT".equals(method)){
            chain.doFilter(request, response);
            return;
        }



        String path = httpServletRequest.getRequestURI();
        if(path.indexOf("index") != -1){
            chain.doFilter(request, response);
            return;
        }
        if (path != null) {
            if (path.contains(Constants.LOGIN)
                    || path.contains(Constants.DOC)
                    || path.contains(Constants.FAVICON)
                    || path.contains(Constants.SWAGGER)
                    || path.contains(Constants.API)
                    || path.contains(Constants.WEBJARS)
                    || path.contains(Constants.HAIRDETECTIONCONTROLLER)
                    || path.contains(Constants.DICTDATA)
                    || path.contains(Constants.DOCTORFILE_SCREEN)
                    || path.contains(Constants.DOCTORFILE_DOCTOR)
            ) {
                chain.doFilter(request, response);
                return;
            }
        }

        String token = httpServletRequest.getHeader(Constants.AUTHORIZATION);
        if (ObjectUtils.isEmpty(token) || ObjectUtils.isEmpty(UserUtils.getUserId())) {
            httpServletResponse.setStatus(HttpStatus.UNAUTHORIZED.value());
            httpServletResponse.setContentType("application/json;charset=utf-8");
            ApiMessage apiMessage = ApiMessage.error(StatusCode.USER_IS_NOT_LOGIN);
            httpServletResponse.getWriter().write(mapper.writeValueAsString(apiMessage));
            return;
        }
        chain.doFilter(request, response);
    }

    @Override
    public void init(FilterConfig filterConfig) {
        log.info("filter init");
    }
}