Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
LibWeb: Check presence of
WWW-Authenticate
header in fetch response
If a HTTP 401 response we get does not contain a `WWW-Authenticate` header, we should not trigger the logic to ask the user for credentials and retry the request. This part is hinted at in a TODO / 'Needs testing' remark in the spec but needs to be fleshes out. Raised an upstream issue to do so: whatwg/fetch#1766 This fixes login forms triggering an infinite fetch loop when providing incorrect credentials.
- Loading branch information