By: Abdur Rafey Masood user 25 Jul 2021 at 9:30 a.m. CDT

1 Response
Abdur Rafey Masood gravatar
## Expected Behaviour The app must redirect to gluu's login screen when tried to login to web application, which responds with the authorization_code and then a new request to get the token is sent. ## Actual Behaviour The token request fails with a CORS error `Access to XMLHttpRequest at 'https://mygluu.poc.com/oxauth/restv1/token' from origin 'http://localhost:4200' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.` https://ibb.co/X50dWTP ## Examples Have tried changing the cors configuration in gluu. https://ibb.co/G5JCC5G is the current configuration that has been specified for gluu CORs section. Do any changes need to be made to the configuration file in order to mitigate the cors error.

By Michael Schwartz Account Admin 26 Jul 2021 at 10:33 a.m. CDT

Michael Schwartz gravatar
Did you read the [CORS doc page](https://gluu.org/docs/gluu-server/4.2/admin-guide/cors/#configure-cors)