[malft]

Before you start rearchitecting your app, be sure to check if the only reason you're seeing preflights on GET is that someone added a dumb X-Requested-By header.

(You can even do POSTs without preflight if you use a whitelisted content-type.)

[smarx007]

For example, JQuery: https://stackoverflow.com/questions/3372962/can-i-remove-the...

[sedro]

Are you conflating CORS with some specific product?

[ec109685]

No, referring to this: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#simpl...

And the case where preflight isn’t needed despite using CORS.