Access-Control-Allow-Origin设置多个域名

if(req.headers.origin == config.allowOrigin.int || req.headers.origin == config.allowOrigin.ext){
  res.header("Access-Control-Allow-Origin", req.headers.origin);
  res.header("Access-Control-Allow-Headers", "Content-Type, Authorization, X-Requested-With");
  res.header("Access-Control-Allow-Methods", "PUT,POST,GET,DELETE,OPTIONS");
  res.header("Access-Control-Allow-Credentials", true); //可以带cookies
  res.header("Content-Type", "application/json; charset=utf-8")
  res.header("X-Powered-By", '3.2.1')
}