I fixed it by doing the following:

我通过执行以下操作修复了它：

A. You need a .htaccess on the host where you run the script.

答：您需要在运行脚本的主机上有一个 .htaccess。

<FilesMatch "\.(php)$">
  <IfModule mod_headers.c>
    Header set Access-Control-Allow-Origin "*"
  </IfModule>
</FilesMatch>

Header set Access-Control-Allow-Origin "*"
Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
Header set Access-Control-Max-Age "1000"
Header set Access-Control-Allow-Headers "x-requested-with, Content-Type, origin, authorization, accept, client-security-token"

secondly the ERP system also need headers to be set. You can check with curl if headers are correctly set or not.

其次ERP系统也需要设置抬头。您可以使用 curl 检查标题是否正确设置。

B. Another option: if you do not want to work with headers, or are unable to set some headers then you can use CURL to do the job :

B. 另一种选择：如果您不想使用标题，或者无法设置某些标题，那么您可以使用 CURL 来完成这项工作：

when clicking submit on my form, my script will call a .php file in which i have this code:

单击表单上的提交时，我的脚本将调用一个 .php 文件，其中包含以下代码：

<?php
//
//code to send json to lotus webservice without cors errors
//
$jsondata = $_GET['jsondata'];
$ch = curl_init();

curl_setopt($ch, CURLOPT_URL,"102.101.101.11:80/cops.nsf/orders?openagent");
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS,$jsondata);

// in real life you should use something like:
// curl_setopt($ch, CURLOPT_POSTFIELDS,
//          http_build_query(array('postvar1' => 'value1')));

// receive server response ...
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);

$server_output = curl_exec ($ch);


curl_close ($ch);



?>

and it works! no more cors errors! and data send to the server and also received by server :)

它有效！没有更多的 cors 错误！和数据发送到服务器，也由服务器接收:)

I'd suggest checking out the following resources:

我建议查看以下资源：

Firefox CORS request giving 'Cross-Origin Request Blocked' despite headerswhich is a StackOverflow question from a bit ago.

Firefox CORS 请求给出了“跨源请求被阻止”，尽管标题是不久前的 StackOverflow 问题。

https://developer.mozilla.org/en-US/docs/Web/Security/Same-origin_policyMight help you debug your issue, it demonstrates how Mozilla has implemented their own security policy on CORS.

https://developer.mozilla.org/en-US/docs/Web/Security/Same-origin_policy可能会帮助您调试问题，它演示了 Mozilla 如何在 CORS 上实施自己的安全策略。

https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORSis a mroe in depth server side document about Mozilla's CORS implementation.

https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS是一个关于 Mozilla 的 CORS 实现的深度服务器端文档。

It could be you're requesting it via a different protocol or host, which we can't tell from your examples here, but are common failure modes.

可能是您通过不同的协议或主机请求它，我们无法从您的示例中看出这一点，但这是常见的故障模式。

If you have control of the code on the other side, you can use JSONP instead to get the data, and can avoid all the issues with CORS.

如果您可以控制另一端的代码，则可以改用 JSONP 来获取数据，并且可以避免 CORS 的所有问题。

Update:I blogged about JSONP the other day: http://blog.texasswede.com/calling-a-notes-web-agent-from-another-server-using-jsonp/

更新：前几天我写了一篇关于 JSONP 的博客：http: //blog.texasswede.com/calling-a-notes-web-agent-from-another-server-using-jsonp/