CORS error discovery/v2.0/keys

[SamiiS]

We're trying to get rid of CORS errors now and this one makes it so that we can't login and authorize with Azure AD. What to do to make it work?

We're using ionic 4/angular 7 with a .net api.
Calling on Azure AD to get tokens from the application and then sending authorization tokens with the api requests to the api.

`import { AuthConfig } from 'angular-oauth2-oidc';

export const authConfig: AuthConfig = {

// Url of the Identity Provider
issuer: 'https://login.microsoftonline.com/XXX/v2.0',

loginUrl: 'https://login.microsoftonline.com/XXX/oauth2/v2.0/authorize',

// URL of the SPA to redirect the user to after login
redirectUri: window.location.origin + '/login',
// redirectUri: 'msauth://XXX',

// URL of the SPA to redirect the user to after logout
postLogoutRedirectUri: 'XXX',

// The SPA's id. The SPA is registerd with this id at the auth-server
clientId: 'XXX',

// set the scope for the permissions the client should request
// The first three are defined by OIDC. The 4th is a usecase-specific one
scope: 'openid profile email api://XXX/access_as_user',
// Atm we cant access our own server from redirecturi with ssl, so with this command we disable https
requireHttps: false,
// declares that we are using oidc
oidc: true,
// loosens the rules for getting document data(which means retrieving the accesstoken and identityclaims etc.)
// if true, the data is put in an anchor in the address bar and are not reachable from methods like "x.getAccessToken()"
strictDiscoveryDocumentValidation: false,

};
`

[jeroenheijmans]

Possibly a duplicate of #494? (At the least you might find useful info there.)