We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Describe the bug XMLHttpRequest doesn't send Authorization header when withCredentials is false even if the request is same origin
To Reproduce Steps to reproduce the behavior:
http://localhost:8123
withCredentials: false
Authorization
const req = new XMLHttpRequest(); req.addEventListener("load", reqListener); req.open("GET", "http://localhost:8123/); req.setRequestHeader("Authorization", "Basic asdf"); req.send();
Expected behavior Authorization header is sent as per spec https://xhr.spec.whatwg.org/#the-withcredentials-attribute
Additional context Add any other context about the problem here.
The text was updated successfully, but these errors were encountered:
fix: [capricorn86#1631] Set fetch credentials to same-origin for xhr …
01768b6
…when withCredentials is false To more accurately emulate xhr spec behaviour https://xhr.spec.whatwg.org/#the-withcredentials-attribute
Successfully merging a pull request may close this issue.
Describe the bug
XMLHttpRequest doesn't send Authorization header when withCredentials is false even if the request is same origin
To Reproduce
Steps to reproduce the behavior:
http://localhost:8123
withCredentials: false
andAuthorization
headerAuthorization
header get's erasedExpected behavior
Authorization
header is sent as per spec https://xhr.spec.whatwg.org/#the-withcredentials-attributeAdditional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: