[chttpd] enable_cors = true [cors] origins = * credentials = false methods = GET, PUT, POST, HEAD, DELETE headers = accept, authorization, content-type, origin, referer, x-csrf-token