I am trying to expose a webapp on internet using istio and adding authorization step. I have followed steps in this url "https://www.jetstack.io/blog/istio-oidc/"

Difference between my config and this one, is that mine has 3 services to be exposed not just one, one of them is qraphql using apollo server. when accessing the url from the internet page opens, but I receive some errors from graphql :

Access to fetch at '{Google authentication URL}' (redirected from 'https://mysite/graphql') from origin 'https://mysite' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.

How can I solve that? or what's the reason behind these error? Note that configuration was working with no error before applying authentication step.