php 解决跨域问题

Access to XMLHttpRequest at 'https://bhmcow.hi-cloud.net/DataCenter/api.php/bhdrive_out.shtml' from origin 'http://www.test.com' has been blocked by CORS policy: The 'Access-Control-Allow-Origin' header has a value 'http://localhost' that is not equal to the supplied origin

html页面：

<html>
<head>
   <meta charset="utf-8">
</head>
<body>
   <script typet="text/javascript" src="http://code.jquery.com/jquery-latest.js"></script>
   <script>
  $.ajax({
    url:'https://bhmcow.hi-cloud.net/DataCenter/api.php/bhdrive_out.shtml',
    data:{keyword:123},
    type:'POST',
    dataType:'json',
    //jsonp:"jsonpcallback",
    async:true, //关键数据
    cache:false,//缓存数据
    beforeSend:function(){
        console.log('数据拉取中...')
    },
    success:function(res){
        console.log('success');
        console.log(res);
    },
    error:function(err){
        console.log('failed');
        console.log(err)
    },
    complete:function(XMLHttpRequest, textStatus){
        console.log('数据加载完成')
    }
})
   </script>
</body>
</html>

服务端代码:

        header('Content-Type:application/json; charset=utf-8');
        header('Access-Control-Allow-Origin:*'); // *代表允许任何网址请求
        header('Access-Control-Allow-Methods:POST,GET,OPTIONS,DELETE'); // 允许请求的类型
        header('Access-Control-Allow-Credentials: true'); // 设置是否允许发送 cookies
        header('Access-Control-Allow-Headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin'); 
        // 设置允许自定义请求头的字段
        //echo json_encode(array(1,3));exit();