java.lang.IllegalArgumentException: When allowCredentials is true, allowedOrigins cannot contain the special value "*" since that cannot be set on the "Access-Control-Allow-Origin" response header. 1.出现这个问题的原因是因为controller层跨域注解多了一个 allowCredentials = "true" 1.解决把allowCredentials = "true"给注释掉就行了