As far as i know the only time to specify your CORS policy to the end users browser is by responding to the preflight OPTIONS request.
However this request does not reach my server at all…
I’ve considered using a worker to handle user requests that are cross-origin, but this seems like a weird fix.
Any help?