Creates an Access-Control-Allow-Origin
header for the given origin range.
Creates an Access-Control-Allow-Origin
header for the given origin range.
CAUTION: Even though allowed by the spec (http://www.w3.org/TR/cors/#access-control-allow-origin-response-header)
Access-Control-Allow-Origin
headers with more than a single origin appear to be largely unsupported in the field.
Make sure to thoroughly test such usages with all expected clients!