Reference
Updating Web.config with CORS and Multiple Domains
Using IIS URL Rewrite to solve CORS issue.
Cheatsheet
Notes from “Play by Play Modern Web Security Patterns”
Notes on somethings that we need to make sure are in place to protect our users from malicious code.