public function testItSetsAllowCredentialsHeaderOnValidActualRequestWhenFlagIsSetToTrue()
{
$_SERVER['HTTP_ORIGIN'] = 'http://bar.com';
$this->application->getDI()->getCors()->preflightRequests();
$this->assertEquals('true', $this->response->getHeaders()->get('Access-Control-Allow-Credentials'));
}