CORS Reason: CORS preflight channel did not succeed

ouchkernel · February 2, 2020, 2:02am

Hey,

I am messing around with creating a very basic UI and I am running into CORS issues.

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://x/auth. (Reason: CORS preflight channel did not succeed)
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://x/auth. (Reason: CORS request did not succeed)

I am setting ‘Access-Control-Allow-Origin’ via the apache2 privacyidea.conf.

Any advice or pointers to get this working?

cornelinux · February 2, 2020, 5:28pm

You probably read this one?

I would recommend the following:

Let the browser of your user talk to your new web ui
Let your new web ui application talk to privacyIDEA REST API.

Do NOT let the browser talk to the web UI, so you will not get a CORS problem.