- From: Anne van Kesteren <notifications@github.com>
- Date: Mon, 15 May 2017 02:57:37 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Monday, 15 May 2017 09:58:11 UTC
I still don't understand. You're conflating values of response headers (`Access-Control-Allow-Origin`) with attributes that are only controlled by the client (`withCredentials`). The server doesn't get to dictate whether the client included credentials in the request, that's not possible. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/517#issuecomment-301430701
Received on Monday, 15 May 2017 09:58:11 UTC