Cross-Origin Resource Sharing (CORS) is a mechanism that uses additional HTTP headers to tell browsers to give a web application running at one origin, access to selected resources from a different origin. A web application executes a cross-origin HTTP request when it requests a resource that has a different origin (domain, protocol, or port) from its own.

Ref: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS

Sample configs:

https://ubiq.co/tech-blog/enable-cors-nginx/

https://docs.viblast.com/player/cors/cors-on-nginx

https://gist.github.com/algal/5480916

Update:

A best practice for CORS support is enabled on application level.