[keycloak-dev] CORS origin check in java adapter - PreAuthActionsHandler

Skorupa, Sascha Sascha.Skorupa at rwth-aachen.de
Mon Nov 25 06:42:01 EST 2019

Previous message: [keycloak-dev] [Keycloak Operator] Builder image
Next message: [keycloak-dev] Single Page to manage credentials
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,


is there a reason why origins aren't configurable via deployment to be checked in PreAuthActionsHandler in the Java Adapter? The preflightCors() method performs checks against methods and headers, but all origins seems to be accepted.


Sascha

Previous message: [keycloak-dev] [Keycloak Operator] Builder image
Next message: [keycloak-dev] Single Page to manage credentials
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the keycloak-dev mailing list