Token call doesn't issue preflight (required for CORS)

CrowdStrike / falconjs

CrowdStrike Falcon API JS library for the browser and Node

MIT License

14 stars 10 forks source link

Token call doesn't issue preflight (required for CORS) #213

Closed evanstoner closed 1 month ago

evanstoner commented 1 month ago

When requesting a token, no preflight OPTIONS request is issued first, which is required by the API to support CORS response headers. Other API requests appear to do this.

CleanShot 2024-09-09 at 10 56 59@2x

evanstoner commented 1 month ago

Not an issue -- the token request is considered safe and the CrowdStrike API should accept its Origin header as a CORS allowed origin.