Hi All,

I am trying to load a .stl file on visualforce page by embedding JS based .stl viewer.
.stl file is actually located in AWS S3. And when I try to access it, I am getting below error.
XMLHttpRequest cannot load https://s3.amazonaws.com/. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'https://c.na29.visual.force.com' is therefore not allowed access.

Will enabling CORS at the server side will solve the issue? Is there any other way to solve this issue?
Is there any security issues on doing the same which can affect my security review while I publish app?