I have a CORS issue where I am calling Avatax API. Would I need to set up the configuration to Access-Control-Allow-Origin inside SCA or use JSONP or is there possibly something else I am doing wrong. I know the request is valid because I can hit the avalara's sandbox API endpoint with no issues. And also in POSTman.