Add option to set withCredentials = false for ajax requests

[nolanlawson]

In ajax-browser.js we're setting withCredentials to be true every time. We need some way to programmatically set this, although TBH I have no idea how.

Without this feature, we won't be able to set up the npm-browser to replicate from skimdb.npmjs.com, since credentials will be set to false on that server.

[nolanlawson]

So I guess this would take the form of an ajax option, something like {credentials: true} or {credentials: false}. My feeling is that the default should be true, because otherwise we are going to break a lot of running code out there, since we have been recommending since day 1 that people set credentials=true on the remote CouchDB.

[calvinmetcalf]

the object returned by getHost will have auth set to either a string or false, we can check that

[xMartin]

This is not limited to CouchDB configuration. For instance I have a setup with some auth proxy. How about renaming the issue to something like 'make withCredentials configurable' or something like that.

[anaran]

I arrived at this solution to make auth work for all my use cases (Firefox OS app, Desktop packaged app, served as hosted app via python -m SimpleHTTPServer

Using a customized xhr field I was able to debug this.

I leave the if statement in for historical background:

    var myXHR = function () {
      var request;
      if (false && /* false && */window.location.protocol == "app:") {
        request = new XMLHttpRequest({ mozSystem: true, mozAnon: true });
      }
      else {
        request = new XMLHttpRequest({ mozSystem: false, mozAnon: false });
      }
      return request;
    }
    var opts = {
      ajax: {
        xhr: myXHR,
        timeout: 30000
      }
    };
    var remoteOptionsDB = new PouchDB(destination + optionsDB._db_name, opts);
    var remoteDB = new PouchDB(destination + db._db_name, opts);

[nolanlawson]

woot, efe5dd8

[xMartin]

Nice, thanks!