Details
-
Bug
-
Status: Closed (View Workflow)
-
P2
-
Resolution: Done
-
2.2.0
-
None
-
None
-
-
CP: sprint 135
-
2
-
Core: Platform
Description
Integration test FAT-169
https://github.com/folio-org/folio-integration-tests/pull/206
revealed that an OPTIONS request to the /saml/login and /saml/callback API doesn't return the Access-Control-Allow-Credentials: true CORS header as intended when mod-login-saml runs behind Okapi.
TestRail: Results
Attachments
Issue Links
- blocks
-
FAT-925 CORS Access-Control-Allow-Credentials for /saml/login and /saml/callback
-
- Closed
-
- relates to
-
MODLOGSAML-63 Implement CSRF Prevention
-
- Closed
-