diff --git a/website/server/middlewares/cors.js b/website/server/middlewares/cors.js
index c3b10a2231..d6791da443 100644
--- a/website/server/middlewares/cors.js
+++ b/website/server/middlewares/cors.js
@@ -1,6 +1,6 @@
 export default function corsMiddleware (req, res, next) {
   res.set({
-    'Access-Control-Allow-Origin': req.header('origin') || '*',
+    'Access-Control-Allow-Origin': '*',
     'Access-Control-Allow-Methods': 'OPTIONS,GET,POST,PUT,HEAD,DELETE',
     'Access-Control-Allow-Headers': 'Authorization,Content-Type,Accept,Content-Encoding,X-Requested-With,x-api-user,x-api-key,x-client',
     // Expose rate limit headers to CORS requests