Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-7162

Expose WWW-Authenticate Header when using CORS

    XMLWordPrintable

    Details

      Description

      Currently, if CORS is enabled in keycloak.json users must manually expose the WWW-Authenticate header in order to be able to properly setup the policy enforcer.

      To improve usability we should enable it by default when policy enforcer is configured.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  pcraveiro Pedro Igor
                  Reporter:
                  pcraveiro Pedro Igor
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: