CORS policy problem: Access-Control-Allow-Origin

Can you attach middlewares and server configurations? You can replace the private fields.