The following enhancement has been made for Oracle Infinity Analytics:
Infinity APIs are now restricting CORS requests (containing an Origin header) to only certain hosts which are on an allowlist. If your requests to the Infinity APIs include an Origin header with a value that is not in our allowlist, you’ll receive a 403 response. If this change affects your integration, please consider updating your implementation to not rely on CORS. If that's not an option, you may request to have your specific origins added to the allowlist by contacting support.