Use this little website to test if a URL is setup correctly to work with CORS.
Shareable link: https://cors-test.codehappy.dev/?method=get&origin=https%3A%2F%2Fshiftmate-frontend.vercel.app%2F&url=https%3A%2F%2Fshiftmate-backend.onrender.com%2Fapi%2Fbusiness%2Flogin
This url can only be loaded by pages that match https://www.shiftmate.tech. If you're trying to load it from a different origin and it's not working, you'll need to change it so the access-control-allow-origin header is set to *.
These are the response headers received when making the request.
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://www.shiftmate.tech
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 8e724fddf47ce81e-ORD
connection: keep-alive
content-security-policy: default-src 'none'
content-type: text/html; charset=utf-8
date: Sat, 23 Nov 2024 15:49:55 GMT
rndr-id: 3f6d908e-5320-4922
server: cloudflare
transfer-encoding: chunked
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
x-powered-by: Express
x-render-origin-server: Render
CORS tester was built by @mscccc. The code is available on GitHub. Sponsored by HTML/CSS to Image.