Use this little website to test if a URL is setup correctly to work with CORS.
Shareable link: https://cors-test.codehappy.dev/?method=get&origin=https%3A%2F%2Fcors-test.codehappy.dev%2F&url=https%3A%2F%2Fereignishorizont.xyz%2F.well-known
These are the response headers received when making the request.
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: private, no-cache, max-age=0
cf-cache-status: DYNAMIC
cf-ray: a09c136ff86afad4-CMH
connection: close
content-security-policy: frame-ancestors 'self'
content-type: text/html
date: Wed, 10 Jun 2026 23:15:04 GMT
permissions-policy: geolocation=(), microphone=(), camera=()
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
server: cloudflare
strict-transport-security: max-age=63072000; includeSubDomains; preload
transfer-encoding: chunked
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-powered-by: CyberPanel-OLS/2.4.4
x-turbo-charged-by: LiteSpeed
CORS tester was built by @mscccc. The code is available on GitHub. Sponsored by HTML/CSS to Image.