|
|
@@ -53,7 +53,7 @@ public class HttpUtil {
|
|
|
response.setHeader("Access-Control-Allow-Credentials", "true");
|
|
|
response.setHeader("Access-Control-Allow-Methods", "GET, POST, HEAD, OPTIONS, PUT, DELETE, TRACE, PATCH");
|
|
|
//response.setHeader("Access-Control-Max-Age", "3600");
|
|
|
- response.setHeader("Access-Control-Allow-Headers", "Origin, X-Token,Authentication, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, Authorization, Cache-control");
|
|
|
+ response.setHeader("Access-Control-Allow-Headers", "Origin, X-Token,Authentication, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, Authorization, Cache-control, id, token");
|
|
|
response.setHeader("X-Frame-Options","SAMEORIGIN");
|
|
|
PrintWriter out = null;
|
|
|
try {
|
yaobo