## Expected Behaviour The app must redirect to gluu's login screen when tried to login to web application, which responds with the authorization_code and then a new request to get the token is sent. ## Actual Behaviour The token request fails with a CORS error `Access to XMLHttpRequest at 'https://mygluu.poc.com/oxauth/restv1/token' from origin 'http://localhost:4200' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.` https://ibb.co/X50dWTP ## Examples Have tried changing the cors configuration in gluu. https://ibb.co/G5JCC5G is the current configuration that has been specified for gluu CORs section. Do any changes need to be made to the configuration file in order to mitigate the cors error.