Skip to content

Feature: Value for the crossorigin attribute that makes anon requests same-origin #2614

Open
Open
Feature: Value for the crossorigin attribute that makes anon requests same-origin#2614
Labels
addition/proposalNew features or enhancementsneeds implementer interestMoving the issue forward requires implementers to express interesttopic: fetch
@jakearchibald

Description

@jakearchibald
jakearchibald
opened on May 2, 2017

It currently isn't possible to make same-origin no-credentials requests for things that use the crossorigin attribute.

Notably, this means you can't <link rel="preload"> a fetch() or script module (unless you make the fetch/script send credentials).

A crossorigin attribute that changes same-origin behaviour is a bit weird, so maybe there needs to be some sort of fetchoptions attribute on everything that currently uses crossorigin.

+@yoavweiss @igrigorik

Metadata

Metadata

Assignees

No one assigned

    Labels

    addition/proposalNew features or enhancementsneeds implementer interestMoving the issue forward requires implementers to express interesttopic: fetch

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions