Skip to content

Added Cache-Control in CORs allowed headers#29

Open
sebastien-roch wants to merge 2 commits intoprose:masterfrom
sebastien-roch:master
Open

Added Cache-Control in CORs allowed headers#29
sebastien-roch wants to merge 2 commits intoprose:masterfrom
sebastien-roch:master

Conversation

@sebastien-roch
Copy link

@sebastien-roch sebastien-roch commented Jun 27, 2017

Some library set this header to avoid caching, but the browser will deny the COR request with Request header field Cache-Control is not allowed by Access-Control-Allow-Headers in preflight response.

@sebastien-roch
Added Cache-Control in CORs allowed headers
84fc997 
Some library set this header to avoid caching, but the browser will deny the COR request with `Request header field Cache-Control is not allowed by Access-Control-Allow-Headers in preflight response.`
@sebastien-roch sebastien-roch mentioned this pull request Jun 27, 2017
Closed
@dereklieu
Copy link
Member

dereklieu commented Jul 3, 2017

@sebastien-roch can you give a test case where this is happening? Which browser rejects this header?

@sebastien-roch
Copy link
Author

sebastien-roch commented Jul 3, 2017
edited
Loading

I'm using qwest (https://github.com/pyrsmk/qwest) and this library sets a No-Cache header by default on the requests (which often makes sense for ajax requests). Any modern browser will throw the mentioned error if the response does not have the proper Access-Control-Allow-Headers value, because of CORs rules. I tested with Chrome.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sebastien-roch @dereklieu