chenchulakshmiR opened a new issue, #11052: URL: https://github.com/apache/apisix/issues/11052
### Description I am using openid connect plugin along with keycloak as a broker and identity provider. i have integrated my UI page with APISIX to login via keycloak . once the login is completed in the keycloak login page, it redirects to the UI. at this point the user is logged in with the keycloak but session cookie is not created by the OIDC Plugin. when i make an api call to a protected route from the UI, i am excepting session to be created by the OIDC plugin and call the upsteam. however it redirects to the keycloak and the api request to the keycloak has a header "origin=null" and this is causing the browser to through "has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource." error. can you please let me know if this is the right approach and how to fix the CORS error. ### Environment - APISIX version (run `apisix version`): 3.8 - Operating system (run `uname -a`): Linux apisix-68767dd8fc-8nmp8 5.15.0-1051-azure #59-Ubuntu SMP Wed Oct 11 18:49:16 UTC 2023 x86_64 GNU/Linux - OpenResty / Nginx version (run `openresty -V` or `nginx -V`): openresty/1.21.4.2 - etcd version, if relevant (run `curl http://127.0.0.1:9090/v1/server_info`): 9.7.3 - APISIX Dashboard version, if relevant: 3.0.0 - Plugin runner version, for issues related to plugin runners: - LuaRocks version, for installation issues (run `luarocks --version`): -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
