public function testItSetsAllowCredentialsHeaderOnValidActualRequestWhenFlagIsSetToFalse()
{
$_SERVER['HTTP_ORIGIN'] = 'http://bar.com';
$this->application->getDI()->getCors()->preflightRequests('false');
$this->assertEquals('false', $this->response->getHeaders()->get('Access-Control-Allow-Credentials'));
}