Hi,
I hope you are doing well! A little background: we added some security headers to our .htaccess file and then the https://cloudflareinsights.com/cdn-cgi/rum was no longer working. We would get an Access to resource at 'https://cloudflareinsights.com/cdn-cgi/rum' from origin '[https://www.tips4gamers.com](https://www.tips4gamers.com/)' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. error. So I deleted the security rules and created the worker Cloudflare has provided - Set security headers · Cloudflare Workers docs - and I changed a few things to it. I wish I found that information before adding anything to my .htaccess file.
This error was only present on three pages. I then added the Insights code manually right before the </body> tag and the issue was still there but present on every page now. Then, I followed the instructions here - My SiteGround Account - to no prevail. I do not like to add the wildcard (*) because of security reasons but I needed to try it out.
Then, I contacted SiteGround for them to guide me to implement the unordered list item #3 via - https://support.cloudflare.com/hc/en-us/articles/200308847-Using-cross-origin-resource-sharing-CORS-with-Cloudflare. They said it was too advanced in development so they recommend that I hire a developer or contact you guys to see if there is anything else I can do.
I would like to Use the single-file purge API to specify the appropriate CORS headers along with the purge request. but that is beyond what I know how to do. If I could figure that out it would be cake. I would like to know how to run those API calls for future use, however.
What else could I do to fix this issue?
Thanks and regards,
Josh