servletResponse.setHeader("Access-Control-Allow-Origin","*") 表示所有域都可请求 即支持跨域
servletResponse.setHeader("Access-Control-Allow-Methods","*") 表示所有请求方式都可
servletResponse.setHeader("Access-Control-Allow-Headers","content-type") 配置自定义头信息
servletResponse.setHeader("Access-Control-Allow-Credentials","true") 是否允许携带验证信息