diff --git a/app/controllers/api/cors_controller.rb b/app/controllers/api/cors_controller.rb
index c060cd6a1..102f9726f 100644
--- a/app/controllers/api/cors_controller.rb
+++ b/app/controllers/api/cors_controller.rb
@@ -5,7 +5,7 @@ module Api
 
     def cors_preflight_check
       set_access_control_headers
-      render json: { status: :ok }
+      render text: ''
     end
 
     def set_access_control_headers
diff --git a/test/integration/api/registrant/registrant_api_cors_headers_test.rb b/test/integration/api/registrant/registrant_api_cors_headers_test.rb
index 54cb5894e..1445253fd 100644
--- a/test/integration/api/registrant/registrant_api_cors_headers_test.rb
+++ b/test/integration/api/registrant/registrant_api_cors_headers_test.rb
@@ -18,4 +18,10 @@ class RegistrantApiCorsHeadersTest < ApplicationIntegrationTest
                response.headers['Access-Control-Allow-Headers'])
     assert_equal('3600', response.headers['Access-Control-Max-Age'])
   end
+
+  def test_returns_empty_body
+    options '/api/v1/registrant/auth/eid', {}
+
+    assert_equal('', response.body)
+  end
 end