diff --git a/config/initializers/008-rack-cors.rb b/config/initializers/008-rack-cors.rb
index c5d476f715b..4864b961f67 100644
--- a/config/initializers/008-rack-cors.rb
+++ b/config/initializers/008-rack-cors.rb
@@ -29,7 +29,7 @@ if GlobalSetting.enable_cors
         end
 
         headers['Access-Control-Allow-Origin'] = origin || cors_origins[0]
-        headers['Access-Control-Allow-Headers'] = 'X-Requested-With, X-CSRF-Token'
+        headers['Access-Control-Allow-Headers'] = 'X-Requested-With, X-CSRF-Token, Discourse-Visible'
         headers['Access-Control-Allow-Credentials'] = 'true'
       end