W3C home > Mailing lists > Public > public-webapps@w3.org > July to September 2012

Re: CORS spec error (?)

From: Anne van Kesteren <annevk@annevk.nl>
Date: Tue, 31 Jul 2012 13:45:52 +0200
Message-ID: <CADnb78j70XVq65hj64q7D51TB5pZ5WZ+qFkk5Ew786RbhESx6g@mail.gmail.com>
To: ewolfman@yahoo.com
Cc: "public-webapps@w3.org" <public-webapps@w3.org>
On Mon, Jul 30, 2012 at 1:49 PM,  <ewolfman@yahoo.com> wrote:
> I think that there's a problem with the current spec of CORS.
> When attempting to perform a preflight with a non-anonymous website, the
> preflight is bound to fail because no Authorization header is being sent.
> This poses a problem at least for IIS users who are using a Classic
> Application Pool, and apparently cannot interfere with the Return Code
> (which is 401).
> Please review discussion here:
> https://bugzilla.mozilla.org/show_bug.cgi?id=778548

I don't really see any other way than waiting for those servers to be obsoleted.

Received on Tuesday, 31 July 2012 11:46:20 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:13:37 UTC