I'm successfully able to make jQuery $.get ajax calls, everything works great. But some ajax calls pass credentials, so I need those calls to be secure. I simply try $.get("https://localhost/ajax.xml", etc...); instead of http. But now it's not working, instead of an http get call, I see in firebug an http OPTIONS request is sent to the server and without the cookies. So my tomcat server returns a redirect to my login page (as it doesn't see a session id in the cookie or url) and the ajax call fails..
What's going on? Why doesn't it simply issue the exact same get request jQuery does when the destination url is http? How can I make this work?