Cors testing

See to run the test in your browser.

Make cors requests to They will respond with {"status":"ok"}.

If you include an Origin header, it will be echoed in the Access-Control-Allow-Origin response, otherwise * is used.

If you include any Access-Control-Request-Headers, they will be echoed in an Access-Control-Allow-Headers response.

If you include any Access-Control-Request-Method, it will be echoed in an Access-Control-Allow-Method response.

For testing purposes, we also always send: Access-Control-Max-Age: 0, and Set-Cookie: test=test.

For more information about CORS see and

Code at, contact