Amazon's S3 doesn't work with requests using https

I use Amazon's S3 and CloudFront for assets delivery. I have specified CORS configuration at S3 bucket:

<?xml version="1.0" encoding="UTF-8"?>
<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
    <CORSRule>
        <AllowedOrigin>*</AllowedOrigin>
        <AllowedMethod>GET</AllowedMethod>
        <MaxAgeSeconds>3000</MaxAgeSeconds>
        <AllowedHeader>Authorization</AllowedHeader>
    </CORSRule>
</CORSConfiguration>

So when I open app using http it's ok. But when I open it using https it says

Origin https://<app-domain> is not allowed by Access-Control-Allow-Origin.

Am I missing something?

Solution

I found that this is CloudFront bug. It caches first origin that accesses S3 and doesn't allow another origins in future. As a workaround this can be used.

AWS EC2 Spring Boot Deployment - SSL/HTTPS Error after Configuring Route 53, ACM, and GoDaddy
Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
HTTPS not workin on AWS Elastic BeanStalk single instance Java platform
node https & zlib package: can't parse gzip'ed response from stackoverflow.com
HTTP to HTTPS Nginx too many redirects
Load CA root certificate at runtime in Java
SSL Self-Signed Certificates Issue in Gitlab
Sniffing Android app's HTTPS traffic from Fiddler fails with only 'Tunnel To' entries in Fiddler
Redirect HTTP to HTTPS on default virtual host without ServerName
How to disable HTTPS or change to HTTP in dev and prod version on symfony?
How to remove JVM property "https.proxyHost"?
How to make Sinatra work over HTTPS/SSL?
How do I disable the security certificate check in Python requests
Best Practice: 301 Redirect HTTP to HTTPS (Standard Domain)
Is it possible to disable HTTP for a Keycloak instance in Azure Container Apps?
How can I make git accept a self signed certificate?
Nginx proxy remove specific path and empty Post request body + HTTPS
How do I get Python to send as many concurrent HTTP requests as possible?
nodejs: listen EACCES: permission denied 0.0.0.0:80
How to make https request and encrypt POST parameters?
Understand Prometheus HTTP API result type
Redirect chain problem in web.config, Windows Server 2020 IIS
Nginx redirect http://www and naked http/https to https://www
HTTPS block my audio playlist. How to solve it?
Issue using certbot with nginx
Expo Go HTTPS-Request doesn't work on android but works on every other OS. (HTTP-Requests are working)
How to deal with mixed content in a website which should be secured as https?
Chrome blocks FastAPI file download using FileResponse due to using HTTP instead of HTTPS
Forget which client certificate is used by Chrome for an URL
SSLHandshakeException - Chain chain validation failed, how to solve?