diff --git a/src/backend/src/Kernel.js b/src/backend/src/Kernel.js
index 6f0de7254..697cb62cb 100644
--- a/src/backend/src/Kernel.js
+++ b/src/backend/src/Kernel.js
@@ -184,8 +184,10 @@ class Kernel extends AdvancedBase {
                 throw e;
             }
 
-            await svc_systemValidation.mark_invalid('failed to initialize services',
-                            e);
+            await svc_systemValidation.mark_invalid(
+                'failed to initialize services',
+                e,
+            );
         }
 
         for ( const module of this.modules ) {
@@ -244,6 +246,9 @@ class Kernel extends AdvancedBase {
             global_config: require('./config'),
         };
 
+        // Also expose global_config globally
+        globalThis.global_config = require('./config');
+
         // Install the mods...
 
         const mod_install_root_context = Context.get();
diff --git a/src/backend/src/util/securehttp.js b/src/backend/src/util/securehttp.js
index 15584c05d..e214ae44a 100644
--- a/src/backend/src/util/securehttp.js
+++ b/src/backend/src/util/securehttp.js
@@ -192,6 +192,14 @@ async function secureAxiosRequest (axios, url, options = {}) {
     };
 
     try {
+        if ( globalThis.global_config.services.secureCorsProxy.url ) {
+            url = globalThis.global_config.services.secureCorsProxy.url + url;
+            if ( ! secureOptions.headers ) {
+                secureOptions.headers = {};
+            }
+            secureOptions.headers['x-cors-proxy-auth-secret'] = globalThis.global_config.services.secureCorsProxy.secret;
+
+        }
         const response = await axios.get(url, secureOptions);
 
         // Check if the response is a redirect (maxRedirects: 0 means axios returns but doesn't follow)