I am using WebApi like I've learnt from http://t.co/mt9wIL8gLA
It all works well if I know exactly the perfect origin URI of my client's requests.
Too bad I am writing an enterprise-wide API, so my request to, say
may come from apps all over my domain, say:
and all the new apps my enterprise builds.
What is the best way to approach this? using