I'm not entirely sure but I think that "enable-cors" is not supported for
the Spring Security Adapter.
For now, you have to deal with CORS "manually" on the server side. I think
Spring has a annotation like "@CrossOrigin".
On Tue, Aug 2, 2016 at 5:30 PM, Robert van Loenhout <
for my REST service.
The REST service is configured as a client with 'bearer-only' access type.
REST service I receive the following error in my browser:
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the
remote resource at http://localhost:30001/rest1/greeting
. (Reason: CORS
header 'Access-Control-Allow-Origin' missing).
I have added
to my REST keycloak configuration.
However where do I configure which origins are allowed?
For 'public' and 'confidential' clients you can configure the web
in the admin console.
But when I set it to 'bearer-only' this field is gone.
client that call a REST service on another host?
keycloak-user mailing list