Basic authentication with jQuery ajax making two requests
I was trying to call an ajax request with Basic authentication, for that i added the following code,
url: appSettings.dataURL+'/app/signature',
type: 'GET',
crossDomain: true,
dataType: 'html',
context : this,
cache : true,
headers: {"Authorization": "Basic " + btoa('username' + ":" + 'password')}
This will make two requests, one with authentication and another without authentication when I inspect with network tab. Why?
See the screen shot,
Is it possible to avoid this?
Note: This happens only for cross domain requests.
Cross-site requests follow certain rules for security. A simple, single request can be made if the only custom headers set are:
- Accept
- Accept-Language
- Content-Language
- Content-Type
and the content type is one of:
- application/x-www-form-urlencoded
- multipart/form-data
- text/plain
You are sending the Authorization header and requesting HTML, so by default that requires a "pre-flight request":
Unlike simple requests, "preflighted" requests first send an HTTP request by the OPTIONS method to the resource on the other domain, in order to determine whether the actual request is safe to send. Cross-site requests are preflighted like this since they may have implications to user data.
The initial OPTIONS request without Authorization is safe because the server only needs to respond with Access-Control-* headers that let the browser know if your full request is OK to proceed. Then your actual request with Authorization is going through, so everything is working as expected.
The XMLHttpRequest object does let you specify you're sending a request with credentials and possibly switch to just one request:
xhrFields: { withCredentials: true }
- My custom CSS transition animation is not working on hover after I added AOS JS library
- How to set data attributes in HTML elements
- Retain Twitter Bootstrap Collapse state on Page refresh/Navigation
- Is it possible to use Closure Compiler ADVANCED_OPTIMIZATIONS with jQuery?
- Capture selected option returns not defined instead
- Uncaught TypeError: matchExpr[type].exec is not a function
- WOW jquery slider
- Crop image white space automatically using jQuery
- Server side paging with ajax & jQuery
- Jquery code doesn't work after paging?
- jQuery Algolia autocomplete enter key
- Drag n Drop sections on the BBC website, how is it done?
- Jquery dd/MM/yyyy date format validation
- Is it possible to make an element inside a container bigger than the container?
- How can I trigger a function while number is changing in an input of type number?
- How to change title when toggle is active in Elementor Page Builder
- Stop fixed position at footer
- how can i tell gsap and js to do something ONLY IF width is above 1200px?
- Working code on JSFiddle, CodePen, but not on my computer
- Is there a way to change the Trumbowyg editor background?
- How to access user input from radio buttons (made with a JS callback) in shiny DT and have different JS elements in one DT?
- Shiny: trigger datatable export button with custom button
- jQuery and fancybox with click event
- How to make a live HTML preview textarea safe against HTML/Script Injection
- After Save or Edit JqGrid doesn't refresh the records
- How to get the PC's OS version in Javascript?
- How to simulate a click by using x,y coordinates in JavaScript?
- jQuery drag and drop is not working with mobile touch
- Can I style a <select> element to show columns?
- Determine day or night given sunset and sunrise times