'Access-Control-Allow-Origin','http://a.zf.cn:5000'
'Access-Control-Allow-Credentials','true'
'Access-Control-Allow-Headers','a'
'Access-Control-Max-Age','3600'
let xhr = new XMLHttpRequest();
xhr.open('GET','http://localhost:5000/user',true);
xhr.setRequestHeader('a','1');
xhr.onload = function(){
console.log(xhr.responseText);
}
xhr.withCredentials = true;
xhr.send();
res.setHeader('Access-Control-Allow-Origin','http://a.zf.cn:5000');
res.setHeader('Access-Control-Allow-Credentials','true')
res.setHeader('Access-Control-Max-Age',3600);
res.setHeader('Access-Control-Allow-Headers','a');
if(req.method === 'OPTIONS'){
return res.end()
}