Menu
When using CORS (Cross-Origin Resource Sharing) with Internet Explorer - does it support providing an Authroization (i.e. for basic Auth)?
232
In FireFox, Safari, Chrome, Edge and IE 10+These headers will enable cross-domain requests in FireFox 3.6+, Safari 4+, Chrome 4+, Edge, and IE 10+. Older versions of this browsers do not allow cross-domain requests.
If the server is under your control, add the origin of the requesting site to the set of domains permitted access by adding it to the Access-Control-Allow-Origin header's value. You can also configure a site to allow any site to access it by using the * wildcard. You should only use this for public APIs.
Allow CORS: Access-Control-Allow-Origin lets you easily perform cross-domain Ajax requests in web applications. Simply activate the add-on and perform the request. CORS or Cross-Origin Resource Sharing is blocked in modern browsers by default (in JavaScript APIs).
In Java servlets. Simply add a header to your HttpServletResponse by calling addHeader : response. addHeader("Access-Control-Allow-Origin", "*");
Short answer: no. Longer answer:
Internet Explorer 7 and below has no support for CORS
Internet Explorer 8 and 9 has limited CORS support via the XDomainRequest object. The XDomainRequest object does not support custom headers, therefore it can't support the Authorization header. (source: http://blogs.msdn.com/b/ieinternals/archive/2010/05/13/xdomainrequest-restrictions-limitations-and-workarounds.aspx)
The upcoming Internet Explorer 10 will have full support for CORS, which includes support for custom headers like Authorization. (source: http://blogs.msdn.com/b/ie/archive/2012/02/09/cors-for-xhr-in-ie10.aspx)
87
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
