I'm checking this too https://issues.jboss.org/browse/KEYCLOAK-5146?jql=project%20%3D%20KEYCLOAK%20AND%20text%20~%20%22swagger%22
El martes, 3 de octubre de 2017, 16:13:36 (UTC+1), Ron escribió: > > Same computer is not enough – they have to be hosted on the same server > *and* the same port (i.e., the same application/service). > > Only browsers are affected by CORS, which is why curl works as expected. > Try fixing that first, then we can check for other issues. > > > > > > *From: *<[email protected] <javascript:>> on behalf of > Néstor Almeida <[email protected] <javascript:>> > *Reply-To: *"[email protected] <javascript:>" < > [email protected] <javascript:>> > *Date: *Tuesday, October 3, 2017 at 05:26 > *To: *Swagger <[email protected] <javascript:>> > *Subject: *Re: Keycloak (OpenID-Connect OAuth) Swagger Integration > > > > Client and server is in the same computer. This does not seem to be a CORS > mistake. If I launch curl it works. > > > > curl -d "client_id=gcid-alertas-restful-api" -d "client_secret= > > client-secret" -d "username=usuario1" -d "password=password" -d > "grant_type=pass > > word" > http://IPADDRESS:18080/auth/realms/gcid/protocol/openid-connect/token > > > > But Swagger omit parameters like grant_type, user and password to get the > token. > > > > Here is the generated link in the Swagger "Authorize" button: > > > > http://IPADDRESS > :18080/auth/realms/gcid/protocol/openid-connect/token?client_id=gcid-alertas-restful-api&client_secret=client-secret. > > -- > You received this message because you are subscribed to the Google Groups > "Swagger" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] <javascript:>. > For more options, visit https://groups.google.com/d/optout. > > -- You received this message because you are subscribed to the Google Groups "Swagger" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
