[Webkit-unassigned] [Bug 45943] CORS: Cross-domain PROPFIND XHR request for servers with authentication does not work in Safari.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Oct 1 01:56:20 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=45943
Julian Reschke <julian.reschke at gmx.de> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |julian.reschke at gmx.de
--- Comment #8 from Julian Reschke <julian.reschke at gmx.de> 2010-10-01 01:56:20 PST ---
As far as I understand, the CORS spec requires the server to handle OPTIONS without authentication. That's a serious problem for protocols that already use OPTIONS, and require authentication. In many frameworks, authentication happens before the request (headers + body) can be expected, so this will be very hard to deploy.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list