New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Credentials by default set to omit in ajax request #11

Open

csdougliss opened this issue Nov 6, 2019 · 1 comment

csdougliss commented Nov 6, 2019 •

edited

Loading

globalpayments-3ds-js/src/lib/make-request.ts

Line 20 in 2175eef

credentials: "omit",

This causes an issue in my application as my cookies are not sent in the request to check3dsVersion or initiateAuthentication

As per https://developer.mozilla.org/en-US/docs/Web/API/Request/credentials, this should be changed to 'same-origin':

omit: Never send or receive cookies.
same-origin: Send user credentials (cookies, basic http auth, etc..) if the URL is on the same origin as the calling script. This is the default value.
include: Always send user credentials (cookies, basic http auth, etc..), even for cross-origin calls.

The text was updated successfully, but these errors were encountered:

jota0222 commented Jun 30, 2020

It's happening to me. I think this is better to be configurable. Is there any solution available that doesn't involve edit the library?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment