I am trying to have a backend and frontend loosely coupled, meaning that I would like to host them on separate servers on different port. But currently I am facing an issue where I am getting a CORS-error from your CSP-policy: Access to XMLHttpRequest at 'https://www.twitch.tv/xxx' (redirected from 'http://localhost:3000/twitch/auth?xxx') from origin 'http://127.0.0.1:5500' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
Is their any way around this, or does the server doing the redirect and redirect uri have to come from the same place?
I have the server and client separated on two different locations (127.0.0.1:5000 and localhost:3000). The client requests the server which then redirects to twitch, but then I get the CORS.