[1] Cross-Origin Resource Sharing ( ( 版)) http://dvcs.w3.org/hg/cors/raw-file/tip/Overview.html#access-control-allow-headers-response-header
[2] Fetch Standard ( ( 版)) https://fetch.spec.whatwg.org/#http-access-control-allow-headers
[3] ( ( 版)) http://www.iana.org/assignments/message-headers/prov/access-control-allow-credentials
[4] Allow more wildcards in CORS when used without credentials ( (annevk著, )) https://github.com/whatwg/fetch/commit/cdbb13c08650b10c9ebfc54d046bec0639e7ba7c
[5] Adjust CORS wildcard handling slightly (annevk著, ) https://github.com/whatwg/fetch/commit/358dbf5296d91bb791d864b677b367bb11b3bf37
Access-Control-Allow-Headers: origin,range,hdntl,hdnts Access-Control-Expose-Headers: Server,range,hdntl,hdnts