Hi @Shaiknagulmeera ,
To allow Cross-Origin Resource Sharing (CORS) for a Cloud Run service, you need to configure CORS on both the Cloud Run service and the API Gateway.
In the API Gateway, you can use the Access-Control-Allow-Origin header to specify the allowed origins. This can be done in the API Gateway configuration file.
It’s worth noting that if you’re using a wildcard origin (__*__) in the Access-Control-Allow-Origin header, you will also need to set the **Access-Control-Allow-**Credentials header to true to allow cookies to be sent.
It’s possible that the issue you’re experiencing is caused by a mismatch between the allowed origins specified in the Cloud Run service and the API Gateway, or by not setting the **Access-Control-Allow-**Credentials header to true if you’re using a wildcard origin in the Access-Control-Allow-Origin header.
Reference: