Because currently CORS sends twice more requests than needed, which makes it slower than alternative cross domain transports & overloads API with pointless payloads.

Inspired by blog post from @homakov. Source on GitHub

The basic idea is to bypass the CORS preflight request by putting the actual method and the extra headers on the Accept header.