I’m trying out the JWT access control feature using a third-party identity provider (centralized JWT). It’s working beautifully with Postman doing GETS, but now we have issues passing the pre-flight checks in our web application (CORS). Up until now we’ve been using Keyless and CORS not enabled. The downstream provider was handling CORS. When I set the authentication mode to Basic or back to Open it works, it just seems to be the JWT setting. Any help is appreciated.