Sorry guys. Not really a cors issue. This has more to do with app transport security issue that poped up after ios9 release.
Can be fixed using this