Header always set Access-Control-Allow-Origin "*"Header always set Access-Contr

1. Header always set Access-Control-Allow-Origin "*"
2. Header always set Access-Control-Max-Age "1000"
3. Header always set Access-Control-Allow-Headers "X-Requested-With, Content-Type, Origin, Authorization, Accept, Client-Security-Token, Accept-Encoding"
4. Header always set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE, PUT"