Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow bypassing ajax preflights with config options #630

Merged
merged 2 commits into from
Sep 16, 2016
Merged

Allow bypassing ajax preflights with config options #630

merged 2 commits into from
Sep 16, 2016

Conversation

matthewlane
Copy link
Collaborator

Type of change

  • Restoration

Description of change

This change allows ajax calls to be configured with two options related to sending preflight OPTIONS requests. Setting preflight to false, and setting contentType to one of application/x-www-form-urlencoded, multipart/form-data, or text/plain will prevent a preflight OPTIONS request. Example of setting these options:

  ajax(ENDPOINT, handleResponse, payload, {
    contentType: 'text/plain',
    preflight: false
  });

Other information

Addresses #625

mkendall07
mkendall07 requested changes Sep 15, 2016
View reviewed changes
Copy link
Member

@mkendall07 mkendall07 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey @matthewlane
can you update per my comments? Thanks

src/ajax.js
@@ -54,8 +54,11 @@ export function ajax(url, callback, data, options = {}) {
if (options.withCredentials) {
x.withCredentials = true;
} else {
x.setRequestHeader('X-Requested-With', 'XMLHttpRequest');
x.setRequestHeader('Content-Type', 'application/json;charset=UTF-8');
if (options.preflight !== false) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any reason for the double negation here? Also don't see why we can't use withCredentials with preflight. IMO these should all be standalone options

src/ajax.js
x.setRequestHeader('X-Requested-With', 'XMLHttpRequest');
}
x.setRequestHeader('Content-Type',
options.contentType || 'application/json;charset=UTF-8');
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this will also have to be updated, as content other than application/x-www-form-urlencoded, multipart/form-data, or text/plain requires a preflight request. In other words, application/json will trigger preflight.

manhhailua
manhhailua approved these changes Sep 15, 2016
View reviewed changes
src/ajax.js
@@ -54,8 +54,11 @@ export function ajax(url, callback, data, options = {}) {
if (options.withCredentials) {
x.withCredentials = true;
} else {
x.setRequestHeader('X-Requested-With', 'XMLHttpRequest');
x.setRequestHeader('Content-Type', 'application/json;charset=UTF-8');
if (options.preflight !== false) {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These code will let preflight requests become default behavior. Is it intential?!

@mkendall07
Copy link
Member

LGTM.

@mkendall07 mkendall07 merged commit 58378f4 into master Sep 16, 2016
@matthewlane matthewlane deleted the configurable-ajax branch September 16, 2016 23:10
marian-r added a commit to aol/Prebid.js that referenced this pull request Sep 23, 2016
@marian-r
Merge pull request prebid#34 in AOLP_ADS_JS/prebid.js from release/1.…
36d2315 
…3.0 to master

* commit '9d4bc7fda6bcc249544fb8636b98e90fdc8d474b': (44 commits)
  Added support for new adapters introduced in 0.13.0 into AOL analytics
  Updated CHANGELOG
  Fixed merge conflict
  Prebid 0.13.0 Release
  Resolves prebid#635 (prebid#640)
  Add IX Deal Support (prebid#638)
  Bug fix: accept custom timeout prebid#582 & prebid#604 (prebid#641)
  added timeouts to rubicon adapter that consider time-to-start costs (prebid#629)
  Modify handling of no-bids in Krux Link adapter (prebid#628)
  Allow bypassing ajax preflights with config options (prebid#630)
  validateIndentation: Invalid indentation character (prebid#631)
  use `splice` rather than `slice` to remove bids from array (prebid#637)
  delete the callback before calling clearAuction (prebid#636)
  Deal override fix to resolve prebid#618 (prebid#619)
  Update package.json
  Video - create mastertagUrl from adservertag (prebid#614)
  Prevent renderAd from rendering videos (prebid#623)
  Remove unused build depencencies (prebid#622)
  Add pull request template (prebid#615)
  Openx adaptor deal update (prebid#612)
  ...
Studnicky pushed a commit to sonobi/Prebid.js that referenced this pull request Oct 4, 2016
@matthewlane
Allow bypassing ajax preflights with config options (prebid#630)
d7de408 
* Allow bypassing ajax preflights with config options

* Make preflight opt-in and set default content-type to text-plain
Studnicky pushed a commit to sonobi/Prebid.js that referenced this pull request Oct 4, 2016
@matthewlane
Allow bypassing ajax preflights with config options (prebid#630)
3611898 
* Allow bypassing ajax preflights with config options

* Make preflight opt-in and set default content-type to text-plain
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mkendall07 mkendall07 mkendall07 approved these changes

@manhhailua manhhailua manhhailua approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@matthewlane @mkendall07 @manhhailua