I am a developer consuming the Web API and suddenly today all my requests to Refresh Access Tokens are not working on the browser. Postman works fine, but the browser is throwing CORS errors.
No change to code on my end, and if I get an access token through postman, then all subsequent API requests work.
This is the kind of error I am getting suddenly.
Access to fetch at 'https://accounts.spotify.com/api/token' from origin 'https://localhost:3000' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.
EDIT: This morning the api started working as expected on its own. No code changes at all have gone in and the full functionality on my web app is working now.
I’d love to hear from the Spotify team about what happened.