Cross site Ajax.Request with cookies and Prototype.js

Question

I need to tell Ajax.Request (from Prototype.js) to set xhr.transport.withCredentials to true (to enable cookies in my cross site requests headers). I failed by trying:

Ajax.Request('http://otherSubdomain.host:port/', {
    onCreate: function(request){
        request.transport.withCredentials = true;
    }
});

Access-Control-Allow-Origin is set and the request is successful, but no cookies were sent.

I hate to point out, but it seems to be much easier with jquery here is an example solution.

Victor · Accepted Answer · 2014-06-03T11:38:39.687

3

Try to patch Ajax.Request like this:

Ajax.Request.prototype.request = Ajax.Request.prototype.request.wrap(function(request, url) {
  if (this.options.withCredentials) {
    this.transport.withCredentials = true;
  }
  request(url);
});

And then you'll have additional option withCredentials:

new Ajax.Request('example.com', {
    withCredentials: true
});

edited Jun 03 '14 at 11:38

answered Nov 30 '12 at 08:05

Victor

3,669
3
37
42

Unfortunately this error occurs: SyntaxError: super is a reserved identifier. – Octavian Jun 03 '14 at 10:57
OK, replace `super` with something else (I've edited my answer) – Victor Jun 03 '14 at 11:37

score 1 · Answer 2 · answered Jul 21 '16 at 09:06

Improved Victor's answer a bit.

Fixes in IE where it requires setting withCredentials between 'open' and 'send' and makes it consistent with jQuery ajax options.

Ajax.Request.prototype.setRequestHeaders = Ajax.Request.prototype.setRequestHeaders.wrap(function(setHeaders) {
  setHeaders();
  if (this.options.xhrFields) Object.extend(this.transport, this.options.xhrFields);
});

And then to use it:

new Ajax.Request('example.com', {
  xhrFields: {
    withCredentials: true
  }
});

Cross site Ajax.Request with cookies and Prototype.js

2 Answers2