xmlhttprequest - How to force Angular to send cookies with Http, but without {withCredentials: true} -


i have situation i'm sending ajax request api requires cookie data has access-control-allow-origin: * header.

when add withcredentials option via http.get(url, {withcredentials: true}) produces following error:

xmlhttprequest cannot load http://my.website.com/api/find. value of 'access-control-allow-origin' header in response must not wildcard '*' when request's credentials mode 'include'. origin 'http://localhost:4200' therefore not allowed access. credentials mode of requests initiated xmlhttprequest controlled withcredentials attribute.

but when don't use withcredentials option, no cookies sent.

how send cookies without using withcredentials option?

if you’re making request cross-origin angular http.get, the requirements in fetch spec (which govern behavior this) necessitate can’t without specifying withcredentials (which sets underlying credentials mode request "include").

the browser prevent working, because that’s spec requirements necessitate.

so if want send credentials in request, need instead is: (re)configure cors settings http://my.website.com/api/find endpoint such value of access-control-allow-origin response header has explicit origin rather "*".

how depends on server system you’re using serve content http://my.website.com/api/find endpoint. in many systems, can setting particular config option such server takes value of origin request header , echoes value of access-control-allow-origin response header sends back.


Comments

Post a Comment

Popular posts from this blog

What is happening when Matlab is starting a "parallel pool"? -

running parallel cpu processes in matlab starts command parpool() according documentation , function: [creates] special job on pool of workers, , [connects] matlab client parallel pool. this function takes bit of time execute, on order of 30 seconds. in other multi-cpu paradigms openmp, parallel execution seems totally transparent -- i've never noticed behavior analogous matlab (granted i'm not experienced parallel programming). so, happening between time parpool() called , when finishes executing? takes long? parallel computing toolbox enables run matlab code in parallel using several different paradigms (e.g. jobs , tasks, parfor , spmd , parfeval , batch processing), , run either locally (parallelised across cores in local machine) or remotely (parallelised across machines in cluster - either 1 own, or 1 in cloud). in of these cases, code run on matlab workers , copies of matlab without interactive desktop. if you're intending run on remo...
Read more

angular - DownloadURL return null in below code -

when change file updated in firebase storage when try downloadurl show null. filechange(event: any) { const imagefolder: string = this.employee.id; const filelist: filelist = event.target.files; const file: file = filelist[0]; const storageref = firebase.storage().ref().child(`${imagefolder}/profile.jpg`).put(file); console.log(storageref.snapshot.downloadurl); } the put() asynchronous. if want url after file uploaded have this: firebase.storage().ref().child(`${imagefolder}/profile.jpg`).put(file).then((snapshot) => { storageref = snapshot.downloadurl: console.log(snapshot.downloadurl); });
Read more

php - Cannot override Laravel Spark authentication with own implementation -

during login process of laravel spark need request token of remote api. api stores exact same users , passwords laravel spark application. therefore need username , non hashed password of user during authentication process. i thought overriding authenticated method solution problem. in routes/web.php override post /login endpoint , pointing endpoint own logincontroller: <?php namespace app\http\controllers\auth; use illuminate\support\facades\log; use illuminate\http\request; use laravel\spark\http\controllers\auth\logincontroller sparklogincontroller; class logincontroller extends sparklogincontroller { /** * create new login controller instance. * * @return void */ public function __construct() { parent::__construct(); } /** * handle successful authentication attempt. * * @param request $request * @param \illuminate\contracts\auth\authenticatable $user * @return response */ public fu...
Read more