Cross-Origin Resource Sharing (CORS) is a specification that enables truly open access across domain-boundaries. If you serve public content, please consider using CORS to open it up for universal JavaScript/browser access.

Can I use: http://caniuse.com/#feat=cors

http://www.corsproxy.com/

参考资料

[1]. http://enable-cors.org/
[2]. https://www.owasp.org/images/7/7c/Gentile_OWASP_EU_Tour_2013.pdf