abstract fun allowCredentials(allow: Boolean): CorsHandler
Set whether credentials are allowed. Note that user agents will block requests that use a wildcard as origin and include credentials. From the MDN documentation you can read: Important note: when responding to a credentialed request, server must specify a domain, and cannot use wild carding.
Return
a reference to this, so the API can be used fluently