This reaction does not halt the request, but leaves it up to the app to react on this information. This allows e.g. frameworks to ignore failures in certain conditions.
This reverts commit 9e720f2.
Don't choke on requests that end up without a content-type header
Bypass referer check if Origin header is given
Fix for issue #28
allow cache-breaker params in EscapedParams