[Webkit-unassigned] [Bug 109533] CORS requests don't cache authentication
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Feb 12 19:07:13 PST 2013
https://bugs.webkit.org/show_bug.cgi?id=109533
Alexey Proskuryakov <ap at webkit.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |ap at webkit.org
--- Comment #1 from Alexey Proskuryakov <ap at webkit.org> 2013-02-12 19:09:28 PST ---
Can you please provide a complete test case?
Some comments:
1. A CORS request without withCredentials set would not use cached credentials anyway.
2. I'm surprised that credentials passed via a custom Authorization header ever work on subsequent requests. I would not expect this to work, unlike credentials explicitly passed in XHR.open() call.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list