diff --git a/src/api/middlewares/CORS.ts b/src/api/middlewares/CORS.ts
index 231862504..7e2a38733 100644
--- a/src/api/middlewares/CORS.ts
+++ b/src/api/middlewares/CORS.ts
@@ -25,7 +25,7 @@ export function CORS(req: Request, res: Response, next: NextFunction) {
     res.set("Access-Control-Allow-Headers", req.header("Access-Control-Request-Headers") || "*");
     res.set("Access-Control-Allow-Methods", req.header("Access-Control-Request-Method") || "*");
     res.set("Access-Control-Allow-Origin", req.header("Origin") ?? "*");
-    res.set("Access-Control-Max-Age", "5"); // dont make it too long so we can change it dynamically
+    res.set("Access-Control-Max-Age", "60"); // dont make it too long so we can change it dynamically
     // TODO: use better CSP
     res.set(
         "Content-security-policy",