I thought about days not minutes
Looking at https://developer.mozilla.org/en-US/docs/HTTP/Access_control_CORS:

"Finally, Access-Control-Max-Age gives the value in seconds for how long the response to the preflight request can be cached for without sending another preflight request. In this case, 1728000 seconds is 20 days."

I'd say that's a pretty high value However I am not really sure if that is perhaps a bit too long...

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira