[whatwg/fetch] Cookies not sent across origins with credentials: 'include' and Content-Type: application/json (#997) from Matt Shindala on 2020-01-29 (public-webapps-github@w3.org from January 2020)

From: Matt Shindala <notifications@github.com>
Date: Wed, 29 Jan 2020 09:35:15 -0800
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/997@github.com>

When I don't include the `Content-Type` header, cookies are sent:

```js
await fetch('https://localhost:44348/api/test', { credentials: 'include', method: 'POST' })
```

But when I specify the header, the cookies aren't sent:

```js
await fetch('https://localhost:44348/api/test', { credentials: 'include', method: 'POST', headers: { 'Content-Type': 'application/json' } })
```

Why is this?

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/997

Received on Wednesday, 29 January 2020 17:35:17 UTC