Ajax CORS Issue: If I use no-cors, the Authorization header disappears

Asked Jan 20 '21 at 03:25

Active Jan 20 '21 at 03:25

Viewed 51 times

I am making an ajax call using fetch. When I use no-cors, the Authorization header disappears. If I use cors, the Authorization header is there, but I get cors error. I want to disable cors (no-cors), but it I get 401 (unauthorized) error since the Authorization header inexplicably disappears. Thx

fetch("https:...", {
    method: "GET",
    mode: "no-cors",
    withCredentials: true,
    credentials: 'include',
    headers: {
        Authorization: "Bearer eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiJzaW5nYXB1QE1GQ0dELkNPTSIsImlzcyI6IktlcmJlcm9zUHJvdmlkZXIiLCJhdWQiOiJLZXJiZXJvc1Byb3ZpZGVyIiwicHJlZmVycmVkX3VzZXJuYW1lIjoic2luZ2FwdUBNRkNHRC5DT00iLCJraWQiOjEyNjMsImV4cCI6MTYxMTE1MzI4NCwiaWF0IjoxNjExMTEwMDg0fQ.Dz5vQfwZoU-bIzWJ8lsY1T_dHIqwGyL9rZxM8eG4n74"
      }
    })
   .then(response => response.json())
    .then(data => {
        console.log(data)
    })
    .catch(error => console.error(error))

asked Jan 20 '21 at 03:25

Apurva Singh

4,534
4
33
42

1

https://fetch.spec.whatwg.org/#simple-header – epascarello Jan 20 '21 at 03:34
Why would you use `no-cors`? Its practical uses are few – Phil Jan 20 '21 at 03:35
bro' if I dont use no-cors, I get a cors error. The url I am using is not in my control. – Apurva Singh Jan 20 '21 at 03:43
Hey @epascrello thx for reply. Issue is, if I use no-cors, Authorization header disappears as see from debugger, due to which there is an expected 401 Unauthorized. – Apurva Singh Jan 20 '21 at 04:18

Ajax CORS Issue: If I use no-cors, the Authorization header disappears

0 Answers0