=== on 2 Jan 2019, 10:58:23 Lars Svensson wrote:
https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS

=== on 2 Jan 2019, 11:01:49 Lars Svensson wrote:
An issue should be raised if any of the following HTTP headers are set:

* Access-Control-Allow-Origin
* Access-Control-Allow-Credentials
* Access-Control-Expose-Headers
* Access-Control-Max-Age
* Access-Control-Allow-Methods
* Access-Control-Allow-Headers