Use this little website to test if a URL is setup correctly to work with CORS.
Shareable link: https://cors-test.codehappy.dev/?method=get&url=https%3A%2F%2Fpbs.twimg.com%2Fprofile_images%2F1419580485358002177%2FT426TzJw_400x400.jpg
These are the response headers received when making the request.
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
cache-control: public, max-age=604800
cf-cache-status: MISS
cf-ray: 939f703737d2125d-ORD
connection: keep-alive
content-length: 10775
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
date: Sat, 03 May 2025 11:32:32 GMT
expires: Sat, 10 May 2025 11:32:32 GMT
last-modified: Mon, 26 Jul 2021 08:46:56 GMT
perf: 7402827104
server: cloudflare
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: MISS
x-connection-hash: e7eba03d69590ef9a56978dff76a5a24e7ab2c04ed881c5c6b10795c3054d2dd
x-content-type-options: nosniff
x-response-time: 91
x-transaction-id: f0febf84a7855c5a
x-tw-cdn: CF, CF
CORS tester was built by @mscccc. The code is available on GitHub. Sponsored by HTML/CSS to Image.