Use this little website to test if a URL is setup correctly to work with CORS.
Shareable link: https://cors-test.codehappy.dev/?method=get&url=https%3A%2F%2Ffred.stlouisfed.org%2Fgraph%2Ffredgraph.csv%3Fid%3DGS10
It does not have the access-control-allow-origin header set to *. Without this header, requests from other domains cannot be made to it via a users browser.
If you have access to the server for the URL, you'll need to modify it to add the access-control-allow-origin header. If you do not have access, you'll need to upload the file somewhere else.
These are the response headers received when making the request.
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 8dd7683465fc6215-ORD
connection: keep-alive
content-disposition: attachment; filename="GS10.csv"
content-type: text/csv;charset=UTF-8
date: Mon, 04 Nov 2024 20:38:19 GMT
last-modified: Mon, 04 Nov 2024 20:38:19 GMT
pragma: public
server: cloudflare
strict-transport-security: max-age=86400
transfer-encoding: chunked
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
CORS tester was built by @mscccc. The code is available on GitHub. Sponsored by HTML/CSS to Image.