Re: [beacon] CORS and Credentials questions. from doug.turner@gmail.com on 2014-01-08 (public-web-perf@w3.org from January 2014)

From: <doug.turner@gmail.com>
Date: Wed, 8 Jan 2014 09:00:00 -0800
To: Sigbjorn Finne <sof@opera.com>
Cc: public-web-perf <public-web-perf@w3.org>, Jonas Sicking <sicking@mozilla.com>
Message-Id: <CB2667A1-BEF2-45CE-AA46-B64363A7312E@gmail.com>

Right, that is what I thought too.

What I understand is (https://developer.mozilla.org/en-US/docs/HTTP/Access_control_CORS):

“””
Also, if POST is used to send request data with a Content-Type other than application/x-www-form-urlencoded, multipart/form-data, or text/plain, e.g. if the POST request sends an XML payload to the server using application/xml or text/xml, then the request is preflighted.
“””

Doug


On Jan 8, 2014, at 1:17 AM, Sigbjorn Finne <sof@opera.com> wrote:

> The Beacon spec doesn't set "author request headers" when issuing a cross-origin request, so I would expect there to be no CORS preflight.

Received on Wednesday, 8 January 2014 17:00:33 UTC