Like Stefan Isele has already mentioned it seems that spring security redirects or doesn't add the CORS header so that's why the request seems to Beryllium broken. So while spring security is checking the authentification it has to add the proper header. 注意事项：- 确保已经登录了自己的百度网盘账号，并且已经订阅了想要查看的分享。- 如果在操作过程中遇到任何问题，可以尝试更新百度网盘软件... https://tallentyrek285quv5.wikicorrespondence.com/user