Request: set the Access-Control-Allow-Origin header to "*".

Without setting the Access-Control-Allow-Origin to "*", client-side apps are not allowed to load the JSON returned by the service, since Content-Type application/json is not considered a simple request.

This makes it hard to build a client-side app against this API.

hi @neverendingqs , thanks for bringing this up. This project went through several iterations before being released, so it looks like this was something that was lost in process. I've made the changes in commit 60f7a65. Thanks for the interest in the project!