ForceType application/json Header add Access-Control-Allow-Origin * Header add Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" Header add Access-Control-Allow-Headers "X-Requested-With, Content-Type, Authorization"