I have a SPA configured with OIDC implicit flow. The application has a few environments that I have configured with the same client ID, and I have made sure the correct redirect URLs and CORS/origins are configured. The app uses React and I am using @okta/okta-react with the sign-in widget for user …

If you are still experiencing issues with CORB and caching on /keys endpoint, please send an email to support@okta.com to have ENABLE_CORS_VARY_HEADER feature enabled. EDIT: As of September 2019, this feature is available by default and no longer required to be enabled by support. If you still enco…

Browser cached /oauth2/default/v1/keys causing CORB authentication error

Questions OAuth/OIDC

lawrence October 2, 2018, 5:33pm 2

Follow up, it seems like “disable cache” does not always work either to bypass this error.

CORS issues when using multiple local apps (localhost:<PORT>) to hit the same dev okta account

Post		Replies	Views
CORS issues when using multiple local apps (localhost:<PORT>) to hit the same dev okta account OAuth/OIDC cors	5	6790	October 17, 2018
CORS policy is not being applied to /oauth2/default/v1/keys Questions	3	5312	January 3, 2020
Okta CORS Issue? Works Incognito doesn't work outside of Incognito? Questions cors	8	8230	December 12, 2018
CORS issue on Browser during redirect request OAuth/OIDC	4	4678	February 13, 2024
CORS blocked Access-Control-Allow-Origin Questions	6	11340	August 1, 2019

Browser cached /oauth2/default/v1/keys causing CORB authentication error

Related topics