Header ‘authorization’ is not allowed according to header ‘Access-Control-Allow-Headers’

ThanhTuan1695 · May 27, 2020, 3:40am

Hello,
I am using keycloak (10.0.1) to secure the react app and spring backend.
I can get access token from keycloak. But when I am trying to get user info. I got this bug from CORS:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://example.com/auth/realms/myrealm/protocol/openid-connect/userinfo. (Reason: header ‘authorization’ is not allowed according to header ‘Access-Control-Allow-Headers’ from CORS preflight response)

Does anyone have a suggestion for me or any advice?
Thanks

Topic		Replies	Views
No 'Access-Control-Allow-Origin' header is present on the requested resource in Keycloak 21	4	854	April 22, 2024
CORS Problem - react Securing applications	6	1756	January 13, 2021
CORS issue while fetching users on frontend Getting advice authentication	0	424	October 14, 2020
Missing CORS Header Problem Getting advice	1	520	August 17, 2022
Spring Boot + React + Keycloak after login returns No Access-Controll-Allow-Origin header is present Configuring the server authentication	3	1858	February 13, 2024

Header ‘authorization’ is not allowed according to header ‘Access-Control-Allow-Headers’

Related Topics