remove CORS headers from apache config to be handled in code instead

Author: ylebre

site.conf

@@ -6,14 +6,4 @@
     SSLEngine on
     SSLCertificateFile "/tls/server.cert"
     SSLCertificateKeyFile "/tls/server.key"
-
-    Header always set Access-Control-Allow-Origin *
-    SetEnvIf Origin "(.+)" AccessControlAllowOrigin=$0
-    Header always set Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin
-
-    Header always set Access-Control-Allow-Credentials true
-    Header always set Access-Control-Allow-Headers "*, allow, accept, authorization, content-type, dpop, slug"
-    Header always set Access-Control-Allow-Methods "GET, PUT, POST, OPTIONS, DELETE, PATCH"
-    Header always set Accept-Patch: text/n3
-    Header always set Access-Control-Expose-Headers "Authorization, User, Location, Link, Vary, Last-Modified, ETag, Accept-Patch, Accept-Post, Updates-Via, Allow, WAC-Allow, Content-Length, WWW-Authenticate, MS-Author-Via"
 </VirtualHost>