If you didn’t resolve it, you need to modify the file called sets_headers.rb
Inside both def(set_access_control_headers_execute && cors_preflight_check) add the ‘Authorization’ inside the headers[‘Access-Control-Allow-Headers’] and should look like this:
headers['Access-Control-Allow-Headers'] = 'Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control, Accept-Language, Authorization'