API

Error sending request to api (express) server. 'Access-Control-Allow-Origin' How to fix?

When sending a request to the subdomain https://api.domain/ I get an error:

Access to XMLHttpRequest at 'https://api.domain/create' from origin 'https://domain' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

PUT https://api.domain/create net::ERR_FAILED 403

At the same time, get requests are processed and return the necessary data from the database.

I have not worked with cors yet, please help me. Based on instructions on the Internet, I came to this decision. But as it turned out, nothing worked.

index.js

import express from "express";

import Router from "./routes/routes.js";

const app = express();

app.use(express.json());

app.use(Router);

app.listen(50002, () => console.log('Server is start at: ' + new Date().toLocaleTimeString()));

routes.js

import express from "express";

import cors from "cors";

import {
    get,
    getID,
    create,
    update,
    dell
} from "../controllers/product.js";

const router = express.Router();

var corsOptions = {
    credentials: true,
    preflightContinue: true,
    origin: 'https://domain',
    exposedHeaders: ['Content-Type'],
}

router.use(cors(corsOptions));

router.get('/getallusers', get)

router.get('/getid/:id', getID);

router.put('/create', create);

router.put('/update/:id', update);

router.delete('/dell/:id', dell);

export default router;

And directly the request to the api server

await axios.put(
                'https://api.edu.dniprorada.gov.ua/create',
                {
                  name: this.name,
                  mail: this.mail,
                  phone: this.phone,
                  social: this.social,
                  course: this.course,
                  sity: this.sity,
                },
                {withCredentials: true}
            )