I propose to add the following @CorsAllowAllOrigins @CorsAllowOrigins( "origin1.", ... "originN" ) @CorsAllowMethods( "meth1" ... "methn" ) @CorsExposeMethods( ... ) @CorsMaxAge(integer) @CorsAllowCredentials(boolean)
and make the filter look for them on resources and classes in the usual way. Any objections?
