Auth0 Home Blog Docs

CORS Origins not working properly

I have issue in Cors headers. I have already added my url in Allowed Web Origins and Allowed Origins (CORS). Still I get this issue “Response to preflight request doesn’t pass access control check: Redirect is not allowed for a preflight request”.

Hey there @nikhil.bagul and welcome to Auth0’s Community!

I would be happy to assist in the current hurdle you’re facing. When you get a moment can I get you to capture a HAR file of the current broken workflow and direct message it over to me along with your tenant name? Please be sure to select “Preserve log” to catch redirects and scrub the file of user passwords before passing, thanks!

Archive 19-06-01 10-15-19.har (2.5 MB)
Please check Har file.

Hey can you help me how can i resolved this issue.
Getting this error response in JS even I have added my http://127.0.0.1:8000 origin in allowed cors origin in application settings.

Access to XMLHttpRequest at ‘https://nikks.auth0.com/authorize?response_type=code&client_id=4t84bTy3apWwwz5uyJiakm6Acbyz2xvk&redirect_uri=http://127.0.0.1:8000/incident/&scope=profile%20email&audience=https://nikks.auth0.com/api/v2/&state=xyzABC123’ from origin ‘http://127.0.0.1:8000’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.

Hey @nikhil.bagul I wanted to touch base and let you know I didn’t see anything in the HAR you attached. When you get a min can you DM me your Client ID for the app you are using. Generally this comes down to Allowed Web Origins and Allowed Origins (CORS) needing to be populated with the correct addresses. Thanks in advance!

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.