I have a DRF backend app hosted on pythonanywhere, with a React frontend to consume it. I have the media/static files mapped and set up correctly, I can go to the direct urls listen to the files fine. The rest app works fine too as I have djangocorsheaders set up, until a thirdparty frontend component (wavesurfersjs) tries to access audio files from static. It is blocked due to "CORS header 'Access-Control-Allow-Origin' missing. I have not been able to find a solution, on Mozilla developer I read that the response headers from the server need to specify Access-Control-Allow-Origin: *. I've read on these forums that it is not possible to change the response headers on pythonanywhere static files. So is there a way I can directly serve some of my media from my webapp instead of the normal pythonanywhere static mapping, so I can control the response?