php后台响应头部代码
//json头
header("Content-type: application/json");
//跨域
header("Access-Control-Allow-Credentials: true");
header("Access-Control-Allow-Origin: 跨域URL");
//CORS
header("Access-Control-Request-Methods:GET, POST, PUT, DELETE, OPTIONS");
header('Access-Control-Allow-Headers:x-requested-with,content-type,test-token,test-sessid');//注意头部自定义参数不要用下划线
js请求代码
$.ajax({
type: "POST",
url: "",
xhrFields: {withCredentials: true},
crossDomain: true,
data: "",
beforeSend: function (XMLHttpRequest) {
XMLHttpRequest.setRequestHeader("test-token", 'abcd');
XMLHttpRequest.setRequestHeader("test-sessid", 'abcd');
},
error: function (XMLHttpRequest) {
if (XMLHttpRequest.status === 401) {
}
},
success: function () {},
complete: function () {}
});