Skip to content

CORS-preflight fetch #741

New issue
New issue
Closed
Closed
CORS-preflight fetch#741
Labels
security/privacyThere are security or privacy implications
@annevk

Description

@annevk
annevk
opened on May 28, 2018

Thanks to @youennf in #733 I noticed that CORS-preflight fetches currently don't set the CORS flag when invoking HTTP-network-or-cache fetch. While this does not impact them setting the Origin header (due to using the OPTIONS method), it does impact it processing a 401, which it should not be doing.

Metadata

Metadata

Assignees

No one assigned

    Labels

    security/privacyThere are security or privacy implications

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions