[keycloak-user] CORS's problem with JavaScript's library

Bruno Oliveira bruno at abstractj.org
Thu Jun 29 05:40:26 EDT 2017


Hi Karol, could you write an integration test with the exact steps to
reproduce your issue?
See: https://github.com/keycloak/keycloak-nodejs-auth-utils/blob/master/test/integration/grant-manager-spec.js

That would help us to investigate.

Out of curiosity, why don't you use keycloak-connect?

On 2017-06-28, Karol Buler wrote:
> Hi Everyone,
>
> We have problem with CORS. We are using this lib: https://www.npmjs.com/package/keycloak-auth-utils in our JavaScript application.
>
> When we try to get AccessToken we are getting this message:
>
> Fetch API cannot load http://<keycloak_address>/auth/realms/master/protocol/openid-connect/token. Request header field x-client is not allowed by Access-Control-Allow-Headers in preflight response.
>
> We tried to modify CORS headers in standalone.xml file of Keycloak's server, but we found that CORS headers are hardcoded and added "in air".
>
> Best regards,
> Karol Buler
>
> [https://www.adbglobal.com/wp-content/uploads/adb.png]
> connecting lives
> connecting worlds
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

--

abstractj


More information about the keycloak-user mailing list