[keycloak-user] keycloak-js on Edge causes CORS issues
Ryan Price
ryprice at redhat.com
Tue Sep 4 11:38:01 EDT 2018
I am getting ready to roll out a new client app that uses keycloak-js, and
we're testing with BrowserStack on MS Edge.
Edge does not pick up the user's authentication on an init('check-sso') and
in the error console we see:
SEC7120: [CORS] the origin 'http://HOST.com' failed to allow a cross-origin
document resource at 'ms-appx-web://assets/errorpages/sslnavcancel.html#
https://KEYCLOAK-SERVER/auth/realms/REALM/protocol/openid-connect/login-status-iframe.html
".
Since I am testing on development servers over browserstack there are lots
of self-signed SSL certificates and things that would not exist in
production, not sure if that's the case here or some policy that only
exists in Edge.
We can get this to work in other major browsers and platforms.
--
Ryan Price
Senior Web Application Developer
Red Hat
<https://www.redhat.com>
ryprice at redhat.com IM: @liberatr
<https://red.ht/sig>
More information about the keycloak-user
mailing list