Configuring CORS for WSO2 API Manager JWT Grant token endpoint

Question

I have a browser application that calls WSO2 API Manager JWT Grant endpoint to exchange a JWT for an access token.

The endpoint invoked from Javascript is https://WSO2APIM/oauth2/token

The problem is this call is blocked by the browser because of the CORS restriction:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://WSO2APIM/oauth2/token/. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing)

How can I configure the CORS permission for this endpoint?

.

score 1 · Accepted Answer · answered Jan 27 '19 at 16:19

1

You could enable cors by adding cors hanlder to the token endpoint

org.wso2.carbon.apimgt.gateway.handlers.security.CORSRequestHandler

See https://stackoverflow.com/a/35306629/1110305

answered Jan 27 '19 at 16:19

Chamila Adhikarinayake

3,588
5
25
32

Configuring CORS for WSO2 API Manager JWT Grant token endpoint

1 Answers1