[keycloak-user] Disable CORS on realm endpoints?

Joe Rowe josepharowe at gmail.com
Thu Mar 30 03:18:05 EDT 2017

Previous message: [keycloak-user] User with email example at example.com already exists. How do you want to continue? I just want to login with external IDP
Next message: [keycloak-user] SAML identity broker Client ID/Issuer
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi all,

Is there a configuration setting which will disable CORS at the endpoint
url:
<server>/auth/realms/<valid realm>
?

CORS is on by default here, but is not needed for our application and
causes false positives in pen testing.

Any help would be gratefully received!

Thanks
Joe

Previous message: [keycloak-user] User with email example at example.com already exists. How do you want to continue? I just want to login with external IDP
Next message: [keycloak-user] SAML identity broker Client ID/Issuer
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the keycloak-user mailing list