From beadd3fe770756e00a7e8f565d79f5c54a606d9e Mon Sep 17 00:00:00 2001
From: Rob Wu <gwnRob@gmail.com>
Date: Wed, 12 Mar 2014 18:18:08 +0100
Subject: [PATCH] v0.1.9 - Always use Access-Control-Allow-Origin: *

Fixes #6
---
 lib/cors-anywhere.js | 3 +--
 package.json         | 2 +-
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/lib/cors-anywhere.js b/lib/cors-anywhere.js
index 4402608..e294ead 100644
--- a/lib/cors-anywhere.js
+++ b/lib/cors-anywhere.js
@@ -51,8 +51,7 @@ function isValidHostName(hostname) {
  * @param request {ServerRequest}
  */
 function withCORS(headers, request) {
-  var origin = request.headers.origin || 'null';
-  headers['access-control-allow-origin'] = origin === 'null' ? '*' : origin;
+  headers['access-control-allow-origin'] = '*';
   if (request.headers['access-control-request-method']) {
     headers['access-control-allow-methods'] = request.headers['access-control-request-method'];
     delete request.headers['access-control-request-method'];
diff --git a/package.json b/package.json
index 7520470..a3b3f3d 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "cors-anywhere",
-  "version": "0.1.8",
+  "version": "0.1.9",
   "description": "CORS Anywhere is a reverse proxy which adds CORS headers to the proxied request. Request URL is taken from the path", 
   "license": "MIT",
   "author": "Rob Wu <gwnRob@gmail.com>",