// CORS Headers - SEO Tools Bot header('Access-Control-Allow-Origin: *'); header('Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS'); header('Access-Control-Allow-Headers: Authorization, Content-Type, X-WP-Nonce'); header('Access-Control-Allow-Credentials: true'); header('Access-Control-Max-Age: 86400'); // Handle OPTIONS preflight if ($_SERVER['REQUEST_METHOD'] === 'OPTIONS') { http_response_code(200); exit(); } // Remove X-Frame-Options for iframe embedding header('X-Frame-Options: ALLOWALL'); ?>