API does not allow cross origin requests #75
Description
Some (not all) routes do not allow cross origin requests. This makes the api inaccessible to modern web browsers.
For simple CORS requests the header Access-Control-Allow-Origin: * must be added to HTTP responses.
For more advanced requests there are a few more headers needed. See this article for a good summary of CORS: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
Forum post: http://forums.schedulesdirect.org/viewtopic.php?f=15&t=2991