jp-gouin commented on issue #3593: URL: https://github.com/apache/apisix/issues/3593#issuecomment-782071121
I assume that might blocked the frontend to put any credential in the request but since it's apisix that set the authorization header... Also i see that in case of Cors request the session cookie is not set in the request, that why Apisix cannot add the authorization header... ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org