Authentication Using /api/security/v1/login

Hi

I am currently trying to make a fetch call so as to get cookie such that user does not need to enter username and password is directly redirected to kibana homepage.
But I am getting this error -

Failed to load http://localhost:5601/kibana/api/security/v1/login: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:8000' is therefore not allowed access. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.
index.html:1 Uncaught (in promise) TypeError: Failed to fetch

My elasticsearch.yml -
xpack.security.enabled : true
http.cors.enabled: true
http.cors.allow-origin: "*"
http.cors.allow-credentials: true
http.cors.allow-headers: "X-Requested-With, Content-Type, Content-Length, Authorization"

my kibana.yml -
server.cors: true
server.cors.origin: ['*']

Any help will be appreciated

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.