CORS error even when set to allow *


We’ve got a SPA written in Angular and we’re trying to do some user session tracking with Matomo. We get CORS errors:

Access to XMLHttpRequest at ‘’ from origin ‘’ has been blocked by CORS policy: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.

This seems to happen with the .php request, while the .js request succeeds.