Cross-Origin-Resource-Policy blocks image embedding

**Describe the bug**
CloudFront distribution sends `Cross-Origin-Resource-Policy: same-origin` header, blocking images from loading on cross-origin websites.

**To Reproduce**
1. Deploy DIT solution v8
1. Load an image from CloudFront domain on a different origin: `<img src="https://cloudfront-domain.cloudfront.net/image.jpg">`
1. Browser blocks request with: `cross-origin-resource-policy: same-origin`

**Expected behavior**
Images should be loadable cross-origin for CDN use cases.

**Please complete the following information about the solution:**
- [x] Version: `v8.0.0`
- [x] Region: `us-east-1`
- [ ] Was the solution modified from the version published on this repository?: `No`
- [ ] If the answer to the previous question was yes, are the changes available on GitHub?
- [x] Have you checked your [service quotas](https://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html) for the sevices this solution uses? `Yes`
- [ ] Were there any errors in the CloudWatch Logs? `No`

**Screenshots**

<img width="1061" height="199" alt="Image" src="https://github.com/user-attachments/assets/f89be725-4c56-4d5f-a598-a000a8283b21" />




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Cross-Origin-Resource-Policy blocks image embedding #624

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Cross-Origin-Resource-Policy blocks image embedding #624

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions