Reputation: 12143
CORS with Internet Explorer - support for basic authentication?
When using CORS (Cross-Origin Resource Sharing) with Internet Explorer - does it support providing an Authroization (i.e. for basic Auth)?
Upvotes: 8
Views: 5695
Answers (2)
Reputation: 1
Any public site that need to support IE7,8,9 withCredentials, DO NOT user CORS. Feature is disabled in internet zone "Access Data Sources Across Domains". Only trusted zone domains can make Cross domain calls.
Upvotes: 0
Reputation: 47957
Short answer: no. Longer answer:
Internet Explorer 7 and below has no support for CORS
Internet Explorer 8 and 9 has limited CORS support via the XDomainRequest object. The XDomainRequest object does not support custom headers, therefore it can't support the Authorization header. (source: http://blogs.msdn.com/b/ieinternals/archive/2010/05/13/xdomainrequest-restrictions-limitations-and-workarounds.aspx)
The upcoming Internet Explorer 10 will have full support for CORS, which includes support for custom headers like Authorization. (source: http://blogs.msdn.com/b/ie/archive/2012/02/09/cors-for-xhr-in-ie10.aspx)
Upvotes: 12
Related Questions
- CORS request with IE11
- Internet Explorer 10 is ignoring XMLHttpRequest 'xhr.withCredentials = true'
- How to call http from https using CORS in IE?
- IE 11, XMLHttpRequest, and CORS
- IE9 CORS and restangular
- ajax CORS with Internet Explorer 9
- CORS with IE11+ Access Denied with SSL to localhost
- BasicAuth enabled CORS requests on IE8/9
- CORS authentication in Internet Explorer using JQuery
- Requesting an API which uses CORS on IE7