I see that you request header Origin is null when it should be http://localhost:8080. Usually, this should not happen as Origin is provided by the browser and cannot be changed programmatically.
Is the page that’s making this request also hosted on localhost:8080? Do you have any Plugins installed in chrome that might mess with the CORS headers?