Calling the API remotely using AJAX getting CORS error

I am creating a new webapp that is going to making calls to the API with javascript/ajax

Currently i am getting a CORS error. My Installation is running inside a docker container.

Is there anyway to add Access-Control-Allow-Origin to the response from the API ?

I did find in the settings for Django in the admin->settings-> Django there is a ALLOWED_HOSTS
but there is a green checkmark which indicates it is overwritten by a env var. Any Idea what env var that would be. there is nothing obvious in the .env for the docker file

How are other people dealing with this?