Merge pull request #80 from keaplogik/default-credentials

Default credentials to false for backwards CORS compatibility
mikekelly · Jul 7, 2016 · 7e70770 · 7e70770
2 parents 80fb441 + 4465b01
commit 7e70770
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/js/hal/http/client.js b/js/hal/http/client.js
@@ -13,7 +13,7 @@ HAL.Http.Client.prototype.get = function(url) {
     url: url,
     dataType: 'json',
     xhrFields: {
-      withCredentials: true
+      withCredentials: false
     },
     headers: this.headers,
     success: function(resource, textStatus, jqXHR) {
@@ -32,7 +32,7 @@ HAL.Http.Client.prototype.request = function(opts) {
   var self = this;
   opts.dataType = 'json';
   opts.xhrFields = opts.xhrFields || {};
-  opts.xhrFields.withCredentials = opts.xhrFields.withCredentials || true;
+  opts.xhrFields.withCredentials = opts.xhrFields.withCredentials || false;
   self.vent.trigger('location-change', { url: opts.url });
   return jqxhr = $.ajax(opts);
 };