It appears there is a problem with how your servers respond in the case where non-chrome web browsers send requests. Specifically, the request Justin outlined above is issued by the browser when sending a pre-flight (OPTIONS) request, saying “Hey, when I issue the REAL request I will be sending the User-Agent header.” For some reason this breaks the CORS check and the Infura HTTP server responds with a payload that DENIES access to the API.
Thus a client accessing from Safari cannot do an API, a client accessing from Firefox cannot do an API call, a client accessing from Chrome or Brave CAN.
Hi @justin and @pgebheim - we have identified the issue and are investigating a solution. We’ll give you an update on the fix as soon as we have it.
Thanks for your patience!
Hi @jeffywu - welcome to the Infura community! The fix is still in place; have you tried it in Safari or Chrome? I will bring this up with the engineering team, but full disclosure, it may take some time to get a fix in place, so I would suggest using another browser in the meantime.