LayoutTests/http/tests/security/resources/cors-deny.php - WebKit - Git at Google

 <?php
 header("Access-Control-Allow-Origin: http://example.org/");
 header("Content-Type: application/javascript");

 if (isset($_GET["credentials"])) {
     if (strtolower($_GET["credentials"]) == "true")
         header("Access-Control-Allow-Credentials: true");
     else
         header("Access-Control-Allow-Credentials: false");
 }

 if (strtolower($_GET["fail"]) == "true")
     echo "throw({toString: function(){ return 'SomeError' }});";
 else
     echo "alert('script ran.');";
 ?>
	<?php
	header("Access-Control-Allow-Origin: http://example.org/");
	header("Content-Type: application/javascript");

	if (isset($_GET["credentials"])) {
	if (strtolower($_GET["credentials"]) == "true")
	header("Access-Control-Allow-Credentials: true");
	else
	header("Access-Control-Allow-Credentials: false");
	}

	if (strtolower($_GET["fail"]) == "true")
	echo "throw({toString: function(){ return 'SomeError' }});";
	else
	echo "alert('script ran.');";
	?>