Skip to content
This repository was archived by the owner on Mar 3, 2022. It is now read-only.

Feat: Option to send credentials with http requests#1314

Open
npflood wants to merge 1 commit intoDuendeArchive:devfrom
ECHOInternational:dev
Open

Feat: Option to send credentials with http requests#1314
npflood wants to merge 1 commit intoDuendeArchive:devfrom
ECHOInternational:dev

Conversation

@npflood
Copy link

@npflood npflood commented Mar 5, 2021

Fixes #1062

This PR implements the ability to set the withCredentials value for HTTP requests via a configuration option.
https://developer.mozilla.org/en-US/docs/Web/API/XMLHttpRequest/withCredentials

This is important as it is often necessary to set this value to true if a token request also returns cookies. Providing refresh tokens as secure cookies is considered by many to be a best-practice.
https://hasura.io/blog/best-practices-of-using-jwt-with-graphql/

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Send credentials (certificate) when retrieving token

1 participant