我使用Keycaptain 10.0.2来固定前端的弹簧引导REST API和Angular 9。前端由上运行的弹簧引导微服务提供服务http://localhost:8080.在密钥斗篷方面,openid连接客户端的web源配置为允许所有源
Spring引导Spring-security配置为使用Keycloft作为oauth2客户端提供程序。
spring:
security:
oauth2:
client:
provider:
keycloak:
issuer-uri: https://abc-keycloak.abccloud.com/auth/realms/abc
scope: openid, profile
registration:
keycloak:
client-id: localhost
client-secret: xxxxx
redirect-uri: "{baseUrl}/login/oauth2/code/{registrationId}"
resourceserver:
jwt:
issuer-uri: https://abc-keycloak.abccloud.com/auth/realms/abc
有角度的前端进行注销API调用http://localhost:8080/logout并重定向到
HTTP/1.1 302 Found Location:
https://abc-keycloak.abccloud.com/auth/realms/abc/protocol/openid-connect/logout?id_token_hint=xxxxxx
我在谷歌Chrome浏览器中遇到CORS错误
访问XMLHttpRequest'https://abc-keycloak.abccloud.com/auth/realms/abc/protocol/openid-connect/logout?id_token_hint=xxxxxx&post_logout_redirect_uri=http://localhost:8080'(重定向自'http://localhost:8080/logout'('http://localhost:8080'已被CORS策略阻止:对的响应飞行前请求未通过访问控制检查:否请求的上存在"Access Control Allow Origin"标头资源
它不应该是API调用(在后台请求(。整个浏览器都应该导航到该应用程序注销URL(然后导航到Key斗篷注销URL(。