Enabling CORS not working from application


#1

I’ve added my application as a trusted origin

and on my general settings I have

But whenever I try to access from my application I get the following message

The application is hosted in Apache HTTP and I’ve already set Access-Control-Allow-Origin on .htaccess


#2

Hi @mcadenas

The /token endpoint on authorization servers is not currently enabled for CORS. The best way to go with would be through server-side requests.


#3

Hi @dragos, what would a workaround be if we have no way of implement a server-side request?