<div dir="ltr">I would like the workaround. =)<br></div><br><div class="gmail_quote"><div dir="ltr">On Fri, Jul 22, 2016 at 9:15 AM Eric Wittmann <<a href="mailto:eric.wittmann@redhat.com">eric.wittmann@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Thanks for the info. You've hit a bug in apiman, unfortunately. I have<br>
created a ticket for this bug here:<br>
<br>
<a href="https://issues.jboss.org/browse/APIMAN-1209" rel="noreferrer" target="_blank">https://issues.jboss.org/browse/APIMAN-1209</a><br>
<br>
You can resolve (workaround) this issue locally (without rebuilding<br>
apiman) or you can wait for us to fix the bug and release a new version.<br>
If you would like instructions on how to workaround the bug locally<br>
let me know.<br>
<br>
-Eric<br>
<br>
On 7/22/2016 7:55 AM, Jairo Junior wrote:<br>
> EAP 7.0 + apiman 1.2.7 overlay, but I've also tried with docker image<br>
> apiman/on-wildfly10:1.2.7.Final<br>
><br>
> /apiman-gateway/org/service/1.0 with Keycloak OAuth Policy<br>
><br>
> On Fri, Jul 22, 2016 at 8:29 AM Eric Wittmann <<a href="mailto:eric.wittmann@redhat.com" target="_blank">eric.wittmann@redhat.com</a><br>
> <mailto:<a href="mailto:eric.wittmann@redhat.com" target="_blank">eric.wittmann@redhat.com</a>>> wrote:<br>
><br>
> Apiman should allow OPTIONS requests without requiring authorization.<br>
> What is your setup/configuration (which app server, etc)? Also what<br>
> apiman REST endpoints are you trying to access?<br>
><br>
> -Eric<br>
><br>
> On 7/22/2016 7:22 AM, Jairo Junior wrote:<br>
> > I've been trying to setup apiman + keycloak-oauth-plugin + keycloak +<br>
> > keycloak.js with a client-side angularjs app and a REST API. It's a<br>
> > scenario very similar to<br>
> ><br>
> <a href="https://github.com/keycloak/keycloak/tree/master/examples/demo-template/angular-product-app" rel="noreferrer" target="_blank">https://github.com/keycloak/keycloak/tree/master/examples/demo-template/angular-product-app</a>,<br>
> > but with apiman and CORS.<br>
> ><br>
> > My test are going well with curl, but using my javascript app the<br>
> > browser it is performing a CORS preflight OPTIONS request without<br>
> > authorization header.<br>
> ><br>
> > OPTIONS request works well with authorization header using curl,<br>
> > therefore, I'm not sure whether the browser should include<br>
> authorization<br>
> > header or apiman should allows CORS preflight requests (OPTIONS)<br>
> without<br>
> > authorization header.<br>
> ><br>
> ><br>
> > _______________________________________________<br>
> > Apiman-user mailing list<br>
> > <a href="mailto:Apiman-user@lists.jboss.org" target="_blank">Apiman-user@lists.jboss.org</a> <mailto:<a href="mailto:Apiman-user@lists.jboss.org" target="_blank">Apiman-user@lists.jboss.org</a>><br>
> > <a href="https://lists.jboss.org/mailman/listinfo/apiman-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/apiman-user</a><br>
> ><br>
><br>
</blockquote></div>