Sec-Fetch-Mode:cors added by the browser to the request headers when requesting a script creating CORS issue

[pranaybinju]

I recently migrated React specific part of my project from Webpacker to Vite_rails. The build created is stored on Cloudfront. But while requesting this through vite_javascript_tag, the browser adds Sec-Fetch-Mode:cors to the request and Cloudfront blocks sending the script. This wasn't the case when build with Webpacker.

Also, script tag has type=moduleinserted in it with Vite_rails. Is this prompting the browser to add Sec-Fetch-Mode:cors ? What can be any other way to handle this issue possibly from the front-end, apart from making changes in the configuration at the Cloudfront ?

[marcus-gc]

Running into this same issue. Is there a reason why we're adding the crossorigin and type attributes?