Similar to #249. Request.credentials as "omit"
See original GitHub issueWhen server returns wildcard for allow-origin it doesn’t wok with “include” option and sending cookies (WITH_CREDENTIALS === true) due to hardcoded in the template
if (OpenAPI.WITH_CREDENTIALS) { request.credentials = 'include'; }
How can I support omit instead of include?
Issue Analytics
- State:
- Created 2 years ago
- Reactions:1
- Comments:9 (5 by maintainers)
Top Results From Across the Web
Unable to authenticate using 'credentials' option #249 - GitHub
Hi, I am writing a Spark (2.4.3) application using Scala (2.11.12) which reads data from a BigQuery table with the help of ...
Read more >Request.credentials - Web APIs | MDN
A RequestCredentials dictionary value indicating whether the user agent should send or receive cookies from the other domain in the case of ...
Read more >Differentiate between the first request (authentication) and ...
Two options. (1) Assuming that the token that is sent back from the server after successful authentication of username/password is sent in ...
Read more >5 Ways to Protect Scanning Credentials for Windows Hosts
5 tips for credentialed scanning of Windows hosts. Disable interactive log on. Usually, accounts used for remote administrative authentication, ...
Read more >How to hide Credential Providers from the Windows Logon ...
Use the Exclude the following credential providers field to exclude specific Credential Providers. Enter the comma-separated CLSIDs for multiple ...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
@ferdikoomen sorry, here’s misprint, it’s about headers not cookies. I need authorisation, when I enabled WITH_CREDENTIALS it passes “authorization” header with request but rises CORS issue due to server provides “Access-Control-Allow-Origin: " So "The value of the ‘Access-Control-Allow-Origin’ header in the response must not be the wildcard ''” (https://stackoverflow.com/a/19744754). Same origin doesn’t fit to me due to I do request from another domain than API server. Only “omit” sends authorisation header and ignores wildcard
@ferdikoomen great, thanks!