Cross Origin Resource Sharing (CORS) Blocked for Cloudfront

Cross Origin Resource Sharing is a very common issue faced.

You will usually get the message like the following.

Font from origin ‘’ has been blocked from loading by Cross-Origin Resource Sharing policy: No ‘Access-Control-Allow-Origin’ header is present on the requested resource. Origin ‘’ is therefore not allowed access.

There are two ways to resolve this issue.

Solution 1: S3 Bucket Way

This is the most common solution, which is to set the CORS header in your S3 bucket.


Solution 2: DNS Way

Step 1

Create a subdomain like

instead of using

Step 2

Create a CNAME record that points



That’s it. You are done!