why ie8 CORS / XDomainRequest doesn't send cookie?
-
08-12-2019 - |
Pregunta
I've managed to make a CORS request on IE8 using XDomainRequest. However it seems the cookies are not sent on IE8. Is there any hack for that ? The request is made from buy.example.com to buy.api.example.com
Solución
There is no way except to include the authentication cookie value / token in the query string e.g. :
buy.api.example.com/?sessionId=$sessionId&otherparameters=testand set your webservice to check the query string if cookies are not present.
Otros consejos
There is another way. If you use SSL on the non-default https port, it will keep sending the cookies. For example, if your URL is something like this https://example.com:8443/xxxx, then it will send the cookies.
I experience the same issue you have. My web app (internal web app) was working with https but in a non standard port and it just works fine. When I configure to use 443, it stops working because the cookies are not sent by XDomainRequest object.
I hope this will help