A cross-origin request must be sent including the
Origin header. This indicates from where the request originated. For example, a cross-origin request from
http://example.org would look like this:
GET /cors HTTP/1.1 Host: example.org Origin: example.com
The server will use this value to determine if the request is authorized.