I am making a simple reverse proxy pass-through with cors enabled that I
call from a non deployed html file with scripting to call the API.
Origin is therefore null. I am able to get the response back to the
browser only when I don't include the Auth...