Menu
When I create a new EventSource in JavaScript to listen for server-sent events, like this:
var source = new EventSource("data/pushed");
Is there any way for me to specify additional headers (like some authentication token) in the outgoing HTTP request?
787
No, the EventSource standard does not include setRequestHeader the way XMLHttpRequest does.
It also does not support POST. But you do have cookies. So, my preferred approach for authentication tokens, where practical, is to have the user first login and create a session, and then that session cookie will be passed along with your SSE requests. (Aside: if using PHP, and using sessions with SSE, remember they are locked, so your SSE process should call session_write_close() as soon as it has validated the user. Sessions in other languages might have a similar issue.)
The only other alternative I can suggest is to use XMLHttpRequest (i.e. the Comet approach).
150
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
