Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Authorization missing in request headers for specific words in URL

See original GitHub issue

Please follow the issue template below. Failure to do so will result in a delay in answering your question.

Library

  • msal@1.x.x or @azure/msal@1.x.x
  • @azure/msal-browser@2.x.x
  • @azure/msal-angular@0.x.x
  • [x ] @azure/msal-angular@1.0.0-beta-4
  • @azure/msal-angularjs@1.x.x

Important: Please fill in your exact version number above, e.g. msal@1.1.3.

Framework

Angular

Description

I have a weird problem. I created a few new endpoints in my API, but when I have a specific word ‘multipress’ in the request API the request is send without authorization bearer token. When I change the word ‘multipress’ to ‘mp’ in the API endpoint URL, the request works (and bearer is in the request header.

Error Message

Security

  • Is this issue security related?

Regression

  • Did this behavior work before? Version:

MSAL Configuration

With AD, and API also.

// Provide configuration values here.
// For Azure B2C issues, please include your policies.

Reproduction steps

// Provide relevant code snippets here.
// For Azure B2C issues, please include your policies.

Expected behavior

Browsers/Environment

  • [x ] Chrome
  • Firefox
  • Edge
  • Safari
  • IE
  • Other (Please add browser name here)

Issue Analytics

  • State:closed
  • Created 3 years ago
  • Reactions:2
  • Comments:12 (4 by maintainers)

github_iconTop GitHub Comments

1reaction
jo-arroyocommented, Aug 25, 2020

@mylle A new version was published last night. Please try @azure/msal-angular@1.1.1 and let us know if you have any feedback.

0reactions
nmyllecommented, Aug 24, 2020

When can I download a new version of @azure/msal-angular to fix this problem?

Read more comments on GitHub >

github_iconTop Results From Across the Web

Authorization Header missing on POST request [duplicate]
I'm trying to send a POST request to a URL, using fetch(). I'm deliberately setting the Authorization header but when I inspect the...
Read more >
Why authorization header not included in request ? - Auth0
The reason for that is this request from the browser is not including the Authorization header, unlike postman.
Read more >
HTTP/1.1: Header Field Definitions
The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested....
Read more >
Cross-Origin Resource Sharing (CORS) - MDN Web Docs
Cross-Origin Resource Sharing (CORS) is an HTTP-header based mechanism that allows a server to indicate any origins (domain, scheme, ...
Read more >
Authorization header missing error - WordPress.org
I just tried manually deleting the directive from .htaccess, flushing the permalinks again, and allowing WordPress to reset them (which recreated the HTTP: ......
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

When will msal-angular move to MSAL 2.0?

Next page

unprotectedResources comming from router unprotect api endpoints