[Webkit-unassigned] [Bug 45943] CORS: Cross-domain PROPFIND XHR request for servers with authentication does not work in Safari.

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Oct 1 01:56:20 PDT 2010


Julian Reschke <julian.reschke at gmx.de> changed:

           What    |Removed                     |Added
                 CC|                            |julian.reschke at gmx.de

--- Comment #8 from Julian Reschke <julian.reschke at gmx.de>  2010-10-01 01:56:20 PST ---
As far as I understand, the CORS spec requires the server to handle OPTIONS without authentication. That's a serious problem for protocols that already use OPTIONS, and require authentication. In many frameworks, authentication happens before the request (headers + body) can be expected, so this will be very hard to deploy.

Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list