I am making a request from my-micro-shell-app (URL in address bar) to load resources from another UI app located at my-child-app
In the Network tab, I can see Cookie passed for Requests made to .js/.css resources on my-child-app, but for request to font resource (.woff2) on my-child-app, I do not see Cookie passed in the request and I also get a CORS error as below
Access to font at ‘<SOME_REDIRECT_URL>’ (redirected from
‘https://my-child-app.net/static/media/open-sans-latin-600-normal.344234.woff2’)
from origin ‘https://my-micro-shell-app’ has been blocked by CORS policy: No
‘Access-Control-Allow-Origin’ header is present on the requested
resource.
Not sure what is special about the font request.
To remove a CORS restriction (assuming your request was made as you like) you need to add a CORS policy to the hosting server to say “requests coming from this URL ‘my-micro-shell-app‘” should be allowed. How that’s done depends on the server or any API gateways or proxies in the middle