![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 90%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 79%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVJ%3C/text%3E%3C/svg%3E)
Hi Devanshu Soni,
Given your environment (Next.js frontend, Node.js backend, hosted on Azure App Services), and the fact that you've already configured CORS on the backend, here are a few areas worth double-checking, especially when using Azure App Services and possibly Azure API Management (APIM):
- If Using Azure API Management (APIM):
CORS policies must be explicitly configured in APIM, as OPTIONS (preflight) requests often don’t reach the backend.
Please check your inbound policy in the APIM API definition and ensure it includes a <cors> block. lf CORS is only configured at the backend and not in APIM, the browser will block the response due to missing CORS headers on the preflight.
2.Azure App Service Specifics:
If you're directly calling the backend via App Service (and not via APIM), ensure:
- HTTPS is enforced on both frontend and backend (HTTPS Only enabled under TLS/SSL settings in App Service).
- No redirection occurs that may strip CORS headers.
You're calling the backend using the correct domain (e.g., https://your-api.azurewebsites.net or custom domain).
- Backend Node.js (Express) CORS Setup:
Ensure the CORS middleware is correctly set up and registered before your route handlers