We have configured SSO on our OKTA account [developer@***.com] and have setup one application having SP as (https://abc.xyz.com/).
We are correctly authenticated by OKTA when we put the URL in browser and we can access our Vizerto application. But when the JSESSIONID is expired in our application then we need to redirect to OKTA authentication page but we are getting following error:
“Access to XMLHttpRequest at ‘https://dev-240330.oktapreview.com/home/dev240330__1/0oajmf261dzUceox00h7/alnjmf7cdvVZH3ZaO0h7?entityID=gautam&returnIDParam=idp’ from origin ‘[https://abc.xyz.com]’ has been blocked by CORS policy: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.”
We get this error even after adding our domain “[https://abv.xyz.com]” to trusted Origins under API on OKTA setup.