Allow Cross-origin web browser requests
Otherwise it would be interesting to know why CORS is disabled by choice :). Always eager to learn.
Christoph Strasen commented
FYI: this would include answering to "OPTIONS" requests ;)