[keycloak-user] keycloak CORS Headers in 401 Response

Sunday, 17 December 2017

I have two keycloack clients,

Angular 4: with Access Type credentials authentication
A JAX RS Application (which will be the resource server): with bearer-only authentication!
In this client we activate CORS, as shown by the following json.

...
 {
   "realm": "demo-realm",
   "bearer-only": true,
   "auth-server-url": "http://demo-keycloack-server:8080/auth
<http://demo-keycloack-server:8080/auth>";,
   "ssl-required": "external",
   "resource": "demo-server",
   "enable-cors": true
 } 
The problem is that the requests to the JAX-RS Application when the response status is
Unauthorized 401, this response do not brings the required CORS Headers to javascript
client!

How can we add the respective CORS Header when the HTTP Status is 401 ?

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

[keycloak-user] keycloak CORS Headers in 401 Response