本节内容已在网络篇详解跨域之CORS

    设置跨域的中间件

    2. const allowOrigins = ['http://localhost:3333', null]
    4. module.exports = function (req, res, next) {
    5.     // 处理预检请求
    6.     if (req.method === 'OPTIONS') {
    7.         res.header('Access-Control-Allow-Methods', req.headers['access-control-request-method']);
    8.         res.header("Access-Control-Allow-Headers", req.headers['access-control-request-headers']);//允许的header类型
    9.     }
    10.     // 处理附带身份凭证的请求(cookie)
    11.     res.header("Access-Control-Allow-Credentials", true)
    12.     // 处理简单请求
    13.     if ('origin' in req.headers && allowOrigins.includes(req.headers.origin)) {
    14.         res.header("Access-Control-Allow-Origin", req.headers.origin);
    15.     }
    18.     next();
    19. }