RE: CORS Allow header in preflight response

> On Tue, Apr 16, 2013 at 7:58 PM, Anne van Kesteren wrote:
> > What should the value of the Allow header be in the response to a CORS preflight request?
> > Is the Allow header mandatory, optional, forbidden, ignored?
> 
> Ignored.

Should this be mentioned explicitly in the specification, at least in a non-normative way?

Received on Tuesday, 16 April 2013 19:32:19 UTC