We are using Cloudflare with our PHP web app. We almost had things working until we found that one section of our php code is calling another section of our php which queries the db. This results in 403 status with the Referrer Policy being strict-origin-when-cross-origin.
When turning off the proxy and setting the A record to DNS only, this code works properly. I believe this may be an issue with the headers being sent. Has anyone ever dealt with this?
I have tried updating my httpd.conf file to enable CORS but that didn’t work.