我正在使用apache 2.4.6,并且我想设置适当的标头以允许CORS请求。
我尝试过:
Header always set Access-Control-Allow-Credentials "true"
,但是它只是添加了具有此名称的其他标头(因为来自proxy-pass的响应也附加了此标头):
Response Headers
Access-Control-Allow-Credentials: true
Access-Control-Allow-Credentials: true
...
Connection: Keep-Alive
...
然后我得到错误:
Credentials flag is 'true' but the 'Access-Control-Allow-Credentials is 'true, true'. It must be 'true' to allow credentials.
Header always append Access-Control-Allow-Credentials ""
Header always edit "^$" "*"
但是仍然有2个标题相同的标题。
任何帮助将不胜感激。