Kibana, reverseproxy nginx and CORS enabled

Hi guys, all good?

I'm enabling CORS for my web frontend but seems that I'm missing something on Kibana
as I observe the following error:

Courier Fetch Error: unhandled courier request error: Authorization Exception in Chrome/Safari on Kibana 4.5.0

http.cors.allow-origin: /https?:\/\/localhost(:[0-9]+)?/
http.cors.allow-methods : OPTIONS, HEAD, GET, POST, PUT, DELETE
http.cors.allow-headers : X-Requested-With,X-Auth-Token,Content-Type, Content-Length
http.jsonp.enable: true

Any clues?

Kibana passes a header called kbn-version for xsrf protection. Can you try adding that?

Details at