CORSE od Roman Shafigullin

For all responses this extension sets Access-Control-Allow-Origin to * except if response contains Access-Control-Allow-Credentials header