Add mechanism for additional headers.

[bigkevmcd]

To add additional headers to responses, we have to resort to something like...

allowed_cors_headers = Pliny::Middleware::CORS.send(:remove_const, :ALLOW_HEADERS).dup
allowed_cors_headers << "X-Origin"

Pliny::Middleware::CORS::ALLOW_HEADERS = allowed_cors_headers.freeze

It'd be nice if we could just configure the response headers globally when configuring our app?

[gudmundur]

Nicely done. I'm glad to see this contribution as the example you gave is something that's made my eyes all teary a few times. 😢