Apache can be configured to expose this header using mod_headers, this is enabled by default in Apache however you may want to ensure it’s enabled by running the following command:
To expose the header, you simply add the following line inside either the
<VirtualHost> sections of your server config (usually located in a *.conf file, such as httpd.conf or apache.conf), or within a
Header set Access-Control-Allow-Origin "*"
Note: you can also use
add rather than
set, but be aware that
add can add the header multiple times, so it’s likely safer to use set. Eventually, you may need to reload Apache to make sure your changes are applied.
Copy from http://enable-cors.org/server_apache.html