跨域访问出错： Request header field token is not allowed by Access-Control-Allow-Heade

Access-Control-Allow-Origin 设置为 * ，允许所有地址访问

Access-Control-Allow-Headers 设置哪些header被允许，如 Authentication,Origin, X-Requested-With, Content-Type, Accept,token