Access-Control-Allow-Headers这个如何设置
时间: 2023-10-12 20:16:34 浏览: 48
Access-Control-Allow-Headers是用于CORS(跨域资源共享)的响应标头之一,用于指定允许扩展请求头的列表。在服务器端,可以通过设置Access-Control-Allow-Headers标头来允许特定的请求头。你需要在服务器端服务器端设置该标头,以在客户端请求头中添加自定义字段。如下所示的代码示例演示了如何在Express应用程序中设置Access-Control-Allow-Headers标头:
```
const express = require('express');
const app = express();
const allowHeaders = 'X-Requested-With, X-HTTP-Method-Override, Content-Type, Accept';
app.use(function(req, res, next) {
res.header('Access-Control-Allow-Origin', '*');
res.header('Access-Control-Allow-Methods', 'GET, POST, PUT, DELETE, OPTIONS');
res.header('Access-Control-Allow-Headers', allowHeaders);
if (req.method === 'OPTIONS') {
res.send(200);
} else {
next();
}
});
```