求指点 Refused to set unsafe header "cookie"

V2EX = way to explore

V2EX 是一个关于分享和探索的地方

For Existing Member Sign In

This topic created in 3206 days ago, the information mentioned may be changed or developed.

物联网项目，先写好了 API，使用 JWT AUTH，token 写入 cookie，提示 Refused to set unsafe header "cookie"。
服务器已经设置了
header / Access-Control-Allow-Origin *
header / Access-Control-Allow-Credentials true
代码如下:

	$.ajax({
		url: "https://api.xxx.xxx/temperature/",
		type: "GET",  
		beforeSend: function(xhr){  
			xhr.setRequestHeader('cookie', token)  
		},  
		success: function(data){  
			alert(data);  
		}  
	})

求解惑

header

Unsafe

refused

3 replies • 2017-07-18 08:26:06 +08:00