header

src/main/java/cn/efunbox/audio/aop/AllowOriginIntercepter.java

@@ -33,7 +33,7 @@ public class  AllowOriginIntercepter implements HandlerInterceptor {
             if (originIsAllow(origin, allowValue)) {
                 response.setHeader("Access-Control-Allow-Origin", origin);
                 response.setHeader("Access-Control-Allow-Methods", "GET, POST, HEAD, OPTIONS, PUT, DELETE, TRACE, PATCH");
-                response.setHeader("Access-Control-Allow-Headers", "Origin, X-Token, Authentication, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, Authorization, Cache-control "+headers);
+                response.setHeader("Access-Control-Allow-Headers", "Origin, X-Token, Authentication, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, Authorization, Cache-control, id, token "+headers);
                 response.setHeader("Access-Control-Allow-Credentials", "true");
             }
         }