JedK.18418 (Customer) asked a question.
/v1/token No 'Access-Control-Allow-Origin'
Using the authorization code flow, I've managed to get the Auth-Code using the "v1/authorize" endpoint and that works great! but now I'm stuck trying to get the access token, the POST to "/v1/token" just throws CORS errors. I know that the endpoint doesn't support CORS because it doesn't have a "CORS" thingy on it in the documentation, but that doesn't that help me. Aren't all calls for a token going to be cross domain? What am I doing wrong?This is the error I get:
- XMLHttpRequest cannot load https://dev-00000.oktapreview.com/oauth2/aaaaa00000/v1/token. Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:5555' is therefore not allowed access.
- let headers = new Headers(); headers.append('Content-Type', 'application/x-www-form-urlencoded'); headers.append('Authorization', `Basic ${this.client_details}`); let body = `grant_type=authorization_code` + '&' + `redirect_uri=${this.redirect_uri}` + '&' + `code=${auth_code}`; console.log("BODY:", body); this._http.post(`${this.authServer}/token`, body, { headers: headers, responseType: 1 } ).subscribe
Anyone ever figure this out? It's been two years since posted but I'm running into this problem myself.
URL is set in the admin portal. Can't figure out what else to do.
I have de same issue, any luck with this?