使用ngx_http_headers_module中的add_header 指令,在响应头中添加允许跨域。
Syntax: add_header name value [always];
Default: —
Context: http, server, location, if in location
一般地,我们把允许跨域的头加在动态接口后面,比如php,就加在解析php后面
add_header Access-Control-Allow-Origin *;
add_header Access-Control-Allow-Headers X-Requested-With;
add_header Access-Control-Allow-Methods GET,POST;
参考:W3C定义
https://www.w3.org/TR/cors/#access-control-allow-methods-response-header