more CORS docs

docs/01_cross_origin.md

@@ -9,7 +9,18 @@ reason for using JSONP, we recommend you use CORS.
 
 ## Cross-Origin Resource Sharing
 
-... some general docs here ...
+All API resources set appropriate headers to allow Cross-Origin requests. Be
+aware that on Internet Explorer you might have to use a different interface to
+send these requests.
+
+    // using XMLHttpRequest or XDomainRequest to send an API request
+    var invocation = window.XDomainRequest ? new XDomainRequest() : new XMLHttpRequest();
+
+    if(invocation) {
+      invocation.open("GET", "https://api.travis-ci.org/", true);
+      invocation.onreadystatechange = function() { alert("it worked!") };
+      invocation.send();
+    }
 
 In contrast to JSONP, CORS does not lead to any execution of untrusted code.
 

lib/travis/api/app/endpoint/documentation.rb

@@ -38,14 +38,18 @@ class Travis::Api::App
         end
 
         def docs_for(entry)
-          markdown(entry['doc']).
-            gsub('<pre', '<pre class="prettyprint linenums lang-js pre-scrollable"').
-            gsub(/<\/?code>/, '').
-            gsub(/TODO:?/, '<span class="label label-warning">TODO</span>')
+          with_code_highlighting markdown(entry['doc'])
         end
 
         private
 
+          def with_code_highlighting(str)
+            str.
+              gsub('<pre', '<pre class="prettyprint linenums lang-js pre-scrollable"').
+              gsub(/<\/?code>/, '').
+              gsub(/TODO:?/, '<span class="label label-warning">TODO</span>')
+          end
+
           def general_docs
             @@general_docs  ||= doc_files.map do |file|
               header, content = File.read(file).split("\n", 2)
@@ -58,7 +62,7 @@ class Travis::Api::App
               end
 
               header.gsub! /^#* */, ''
-              { id: header, title: header, content: content, subheaders: subheaders }
+              { id: header, title: header, content: with_code_highlighting(content), subheaders: subheaders }
             end
           end