Client credentials grant flow API, CORS issue

Yes. all from client side. Are you suggesting that I should get the token from the serve instead?