We want to enable CORS for all the APIs in Gateway. APIs should be able to handle the Preflight (OPTIONS) requests & also add the CORS Headers in the response. Is there any way to implement this using the Global Policy Fragments?
have you had a look at Handling CORS on the Gateway for a sample policy ?
The above answer is the main one, but just in case you have the same use case as us (where we had some requests would come in with and some without a previous CORS request) - this was how we solved that :
TechTip : When you need API Gateway Service to respond to both CORS and not CORS requests