safari can not request cors. #52
Comments
|
@breaklee what error are you seeing in Safari? |
|
@troygoode there are no errors. every request has different session id. |
|
@breaklee are you requesting a session across domains? ie: on, google.com requesting login & a page from youtube.com (subdomains may also have issues depending on cookie settings)? I think this might be more over an express-session issue. |
|
@breaklee is this happening on localhost, or in production? if in production, are you serving it over HTTPS? (wondering if this is related to #45) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
blow is my cors option.
cors : function() {
return {
origin : function(origin, callback) {
callback(null, origin === undefined || config.isWhiteList(origin)/always true/);
},
credentials : true,
methods : ["GET", "POST", "DELETE", "PUT", "UPDATE", "OPTIONS", "HEAD"],
exposedHeaders : ['Origin', 'Upgrade', 'Content-Encoding', 'Content-Range', 'Accept-Ranges', 'Range', 'Content-Type', 'Authorization',
'X-Forwarded-For', 'Connection', 'Host', 'Content-Length', 'X-Real-IP', 'X-Requested-With', 'Set-Cookie', 'Cookie'],
allowedHeaders : ['Origin', 'Upgrade', 'Content-Encoding', 'Content-Range', 'Accept-Ranges', 'Range', 'Content-Type', 'Authorization',
'X-Forwarded-For', 'Connection', 'Host', 'Content-Length', 'X-Real-IP', 'X-Requested-With', 'Set-Cookie', 'Cookie']
}
}
and this is used as middleware
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended : false }));
app.use(cookieParser());
app.use(cors(config.cors()));
app.use(sessionStore(app, config));
it works fine chrome env. but not working in safari.
( always refresh cookie values in safari )
how can i handle this?
The text was updated successfully, but these errors were encountered: