Trying to run backend in AWS and have followed the docs in https://supertokens.com/docs/passwordless/serverless/with-aws-lambda/about . I'm so close to getting CORS working and getting this weird error (response is 'yes' which must be 'true' is the weird part):

Access to fetch at '{apiDomain}/dev/auth/signinup/code' from origin '{websiteDomain}' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: The value of the 'Access-Control-Allow-Credentials' header in the response is 'yes' which must be 'true' when the request's credentials mode is 'include'.

Thoughts?