handling CORS preflight request in Apache

Question

I have a AngularJS app deployed using Yeoman. Cakephp RESTful backend.

The Angular app sends in OPTIONS preflight requests, which the backend responds with forbidden

Answer 1

If it helps - I was using authentication so I also had to add following to make POST request work for me:

  Require valid-user