Hi, I want to have an Angular App authenticate against CAS5.3.x. I set the following properties in cas.properties.
When launching app from my localhost:4200, i see this error, when my Angular App tries to redirect browser to CAS5 login page, Access to XMLHttpRequest at ' https://......../cas5/oidc/.well-known/openid-configuration' <https://devcas5.dev.medplus.com/cas5/oidc/.well-known/openid-configuration'> from origin 'http://localhost:4200' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. Am I missing something? I ended up removing these from cas.properties and configure CORS in tomcat8 (my CAS5 runs in Tomcat), that works. Yan cas.httpWebRequest.cors.enabled=true cas.httpWebRequest.cors.allowCredentials=true cas.httpWebRequest.cors.allowOrigins[0]=http://localhost:4200 cas.httpWebRequest.cors.allowMethods[0]=GET,POST,HEAD,OPTIONS,PUT cas.httpWebRequest.cors.allowHeaders[0]=Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Authorization cas.httpWebRequest.cors.maxAge=3600 cas.httpWebRequest.cors.exposedHeaders[0]=Access-Control-Allow-Origin,Access-Control-Allow-Credentials -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/d6de43bf-be82-466f-9bbe-e373b3141f38o%40apereo.org.