Is it possible to send an Access-Control-Allow-Origin header with more than 1 domain? If yes, how? Seems like browsers do not accept multiple domains in this header appropriately.
Sending this header with an asterisk is not an option. I do not want to open it to everyone.