fix: add CORs headers to cache hit responses

main_test.go

@@ -500,6 +500,10 @@ func TestE2ETestCachingMdwWithBlockNumberParam(t *testing.T) {
 			expectKeysNum(t, redisClient, tc.keysNum)
 			containsKey(t, redisClient, expectedKey)
 
+			// verify expected CORs headers added on cache hit
+			require.Equal(t, "*", resp2.Header.Get("Access-Control-Allow-Origin"))
+			require.Equal(t, "Content-Length", resp2.Header.Get("Access-Control-Expose-Headers"))
+
 			require.JSONEq(t, string(body1), string(body2), "blocks should be the same")
 		})
 	}

service/middleware.go

@@ -250,6 +250,11 @@ func createProxyRequestMiddleware(next http.Handler, config config.Config, servi
 
 				w.Header().Add(cachemdw.CacheHeaderKey, cachemdw.CacheHitHeaderValue)
 				w.Header().Add("Content-Type", "application/json")
+
+				// TODO: response headers should probably be cached with the original response
+				w.Header().Add("Access-Control-Allow-Origin", "*")
+				w.Header().Add("Access-Control-Expose-Headers", "Content-Length")
+
 				_, err := w.Write(typedCachedResponse)
 				if err != nil {
 					serviceLogger.Logger.Error().Msg(fmt.Sprintf("can't write cached response: %v", err))