Authentication issue(s)

i dont want to bombard you guys with my issues but there are the 2 issues i cant figure out. if have tried for the past 3-4 days to figure out the authentication setup … but i cant get my anonymous domain to work (guest.domain.com). the user goes to the channel though the anonymous domain and enters the room
the host is already in there through the main domain. (meet.domain.com)
but the guest can not enter … i just shows himself and then kicks him out. the host does not see anyone coming in.
2nd when i login from another computer through the same host domain (meet.domain.com) where the existing authenticated host is already waiting for people to join. As soon as anyone joins the room also through (meet.domain.com) event without credentials it kicks both out of the room

i get this error in my logs all the time.

Access to XMLHttpRequest at 'https://meet.domain.com/http-bind?room=test' from origin 'https://guest.domain.com' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.

. thank you in advance for the help.

This should not exist as accessible through the web. You should have only one link/DNS/hostaname. The guest domain from the secure document is just a virtual host in prosody and in the config.js, nothing more.

thank you very much. I got it to work once i set up CORS