CORS error on customer account ui extension using custom URL

baggio_giacomo · May 22, 2025, 10:09am

Hi there!

I have a customer account ui extension that get some data using app proxy
I’ve managed the CORS by setting these headers:

response.headers["Access-Control-Allow-Origin"] = "*"
response.headers["Access-Control-Allow-Methods"] = "GET, PATCH, PUT, OPTIONS"
response.headers["Access-Control-Allow-Headers"] = "Content-Type, Authorization"
response.headers["Access-Control-Max-Age"] = "86400"

It works correctly in dev and in production but today one merchant told me that the extension doesn’t work anymore

The error on the console is:

Access to fetch at 'https://<store>.myshopify.com/apps/<my_app>/app_proxy/customers/7854090977454' from origin 'https://extensions.shopifycdn.com' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: Redirect is not allowed for a preflight request.

The only difference between this store and the other stores where I’ve tested is that it is using a custom customer account URL (not the default https://shopify.com/<id>/account

Can the problem be that Shopify makes a redirect from the custom url to the default url before calling the app proxy?

Topic		Replies	Views
CORS issue when requesting external API - Customer Extension Extensions customer-account-ext	1	318	February 27, 2025
App proxy has been blocked by CORS at App extension Extensions checkout-ui-ext , customer-account-ext	5	311	March 27, 2025
CORS Error: Response to preflight request doesn't pass access control check Extensions theme-app-extension	4	363	February 3, 2025
Fixed: CORS errors from admin UI extension making requests to app backend Extensions admin-ui-extensions	1	121	March 4, 2025
Cors Error while using api proxy in checkout ui extensions node template Extensions checkout-ui-ext	6	288	April 24, 2025

CORS error on customer account ui extension using custom URL

Related topics