Auth0 Home Blog Docs

CORS issue when calling /oauth/device/code in device-flow

Hi all,
I am trying to integrate Auth0 device flow in our TV application (it’s web based) following this guide

I set the Allowed Web Origins in the app settings, it works when we call the api /oauth/token but it fails for the api /oauth/device/code with the error: No ‘Access-Control-Allow-Origin’ header is present on the requested resource

is it a bug or am I missing something?