SetEnvIf Authorization .+ HTTP_AUTHORIZATION=$0

Header add Access-Control-Allow-Origin "*"
Header add Access-Control-Allow-Methods: "GET,POST,OPTIONS,DELETE,PUT"
Header add Access-Control-Allow-Headers: "Origin, X-Requested-With, Content-Type, Accept, Authorization"
Header add Access-Control-Allow-Credentials: "true"