No CORS headers for JWK Certs for azure attestation

Occasional Visitor

Good day

 

We are trying to implement client side validation for JWT tokens returned from Azure Attestation. The singing certificates are available at URLs like https://sharedeus.eus.attest.azure.net/certs

 

Unfortunately I am unable to get a response for a GET call when calling it from a web application, since the resource does not return with an `access-control-allow-origin https://www.example.com" header.

 

Is this something can be added, or is there a recommended way to work around this?

 

Kind Regards

0 Replies