Implicite flow okta logout error ( front + backend packaging in the same war ) docker image

hello everyone I have the problem logout okta , do you have any idea please

Access to XMLHttpRequest at ‘’ from origin ‘’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.

-----------------------------------------------------------my conf ----------------------------------------

private static final String CSP_HEADERS = “default-src ‘self’; frame-src ‘self’ data:; script-src ‘self’ ‘unsafe-inline’ ; object-src ‘self’; style-src ‘self’ ‘unsafe-inline’; img-src ‘self’ data:; font-src ‘self’ data:; worker-src blob:”;

// enable page caching
// add CSP headers to the response
.referrerPolicy(ReferrerPolicyHeaderWriter.ReferrerPolicy.SAME_ORIGIN )
.featurePolicy(“accelerometer ‘none’; camera ‘none’; microphone ‘none’”)

              .csrfTokenRepository(CookieCsrfTokenRepository.withHttpOnlyFalse()) ;

Have you added your site as a Trusted Origin for CORS requests in Okta?

yes it’s work very much thank you very mush andreza :slight_smile:

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.