Hello, I am experiencing an issue with the URL https://my_url.com/auth/realms/my_realm/ . When I make a GET request with the provided session ID and security headers, with the Origin header set to a random value (e.g., Origin: origin.com), the response headers show: Access-Control-Allow-Origin: *

This is not the behavior I expected. I was anticipating that the Access-Control-Allow-Origin header would be set to my_url.com.
Upon further investigation, I have found that I am unable to configure this header to Access-Control-Allow-Origin: my_url.com as expected.

Questions:

• Is this issue related to the source code, or could it be an issue with my server configuration?
• Is there any way to ensure that the Access-Control-Allow-Origin header is set correctly for requests originating from my_url.com?