general idea of fix for #147

Author: Trofimov Ivan Andreevich

src/System.Web.Cors/CorsPolicy.cs

@@ -85,6 +85,11 @@ public long? PreflightMaxAge
         /// </summary>
         public bool SupportsCredentials { get; set; }
 
+        /// <summary>
+        /// Gets or sets a value indicating whether upstream exceptions should be rethrown.
+        /// </summary>
+        public bool RethrowExceptions { get; set; }
+
         /// <summary>
         /// Returns a <see cref="System.String" /> that represents this instance.
         /// </summary>

src/System.Web.Http.Cors/CorsMessageHandler.cs

@@ -47,6 +47,7 @@ protected async override Task<HttpResponseMessage> SendAsync(HttpRequestMessage
             CorsRequestContext corsRequestContext = request.GetCorsRequestContext();
             if (corsRequestContext != null)
             {
+                CorsPolicy corsPolicy = await GetCorsPolicyAsync(request, cancellationToken);
                 try
                 {
                     if (corsRequestContext.IsPreflight)
@@ -60,6 +61,9 @@ protected async override Task<HttpResponseMessage> SendAsync(HttpRequestMessage
                 }
                 catch (Exception exception)
                 {
+                    if (corsPolicy.RethrowExceptions)
+                        throw;
+
                     return HandleException(request, exception);
                 }
             }