ms-identity-javascript-v2: Access to fetch from origin has been blocked by CORS

We;re having a bit of a similar issue as described here. Currently when running the sample code with msal version 1, which uses the implicit grant flow, all works fine. However, when we try to use this sample that uses msal 2 it fails with the following error:

image

Updating the Azure App Regisrtation to use the “SPA Redirect URI” did not fix it: image

We also tried to disable “implicit grant” in the hope that would resolve the CORSS issue but no luck. Is there still something we’re missing here?

  "dependencies": {
    "@azure/msal-browser": "^2.0.0-beta.0",
    "express": "^4.17.1",
    "morgan": "^1.10.0",
    "yargs": "^15.3.1"
  },

About this issue

  • Original URL
  • State: closed
  • Created 4 years ago
  • Comments: 19 (9 by maintainers)

Most upvoted comments

@DarkLite1 aah, now I see. The issue seems to be that you have both Web and Single-page application added as platforms. Web is the one causing your CORS issue, you should I ideally have separate registrations for each platform. Try removing Web and its return_uris and see if that solves the issue.

+2
derisen on May 19, 2020
Read more comments on GitHub
← ms-identity-javascript-angular-tutorial: When using the MSALGuard and RoleGuard on a route, the Role guard will allow access even if the user does not have the correct role
secrets-store-csi-driver-provider-azure: aks failed to get mounted files, err: failed to list all files in target path →