Always set "Access-Control-Allow-Origin" to "*"
Added a filter that overrides whatever Jettys own CrossOriginFilter sets the Access-Control-Allow-Origin response header to with "*". This is because Jetty will never set it to "*", which is exactly what is needed when a REST service is running behind a caching proxy. Fixes #2641
Showing with 53 additions and 12 deletions