fetch API on Android doesn't respect credentials: omit #12956
Comments
|
as far as I can tell this is an issue on iOS as well |
|
I am facing the same issue. Using credentials: 'omit' on Android fetch does not work. |
|
for anyone looking for a workaround, since i didn't need cookies at all, i just cleared cookies before each request using https://github.com/joeferraro/react-native-cookies |
|
There is a commit that supposed to be solved this issue, but it not working for me. Any idea? |
|
Hi there! This issue is being closed because it has been inactive for a while. Maybe the issue has been fixed in a recent release, or perhaps it is not affecting a lot of people. Either way, we're automatically closing issues after a period of inactivity. Please do not take it personally! If you think this issue should definitely remain open, please let us know. The following information is helpful when it comes to determining if the issue should be re-opened:
If you would like to work on a patch to fix the issue, contributions are very welcome! Read through the contribution guide, and feel free to hop into #react-native if you need help planning your contribution. |
|
Just ran into this exact issue. Currently using https://www.npmjs.com/package/react-native-cookie as a workaround; simply clearing the cookies before each request. |
|
Spotted the same issue, would be great to have a proper fix. |
|
If you are using Expo, you can't run var RCTNetworking = require('RCTNetworking')
function clearCookies () {
RCTNetworking.clearCookies((cleared) => {
console.log('Cookies cleared, had cookies=' + cleared.toString())
})
}Maybe it will help someone. |
|
After upgrading to the latest RN version, I've faced a similar issue regarding authentication cookies. Authentication worked fine on first login, but failed after reloading the iOS simulator. My guess is that RN fetch reuses an old cookie after reload? However clearing cookies before performing initial login fixes the issue. Solution from @2DKot works for me. Thanks for that! 👍 It would be great to have more debug information at hand in DevTools network panel. Both cookies and 302 redirects are really hard to track compared to browser web apps. You can just guess what's going on or use external tools. In my case Login was successful and sends 302 to another page which then redirects to login endpoint again because of wrong cookie sent. 💩 |
|
would be great if it will be worked as in specification |
Description
If Android's native networking library detects valid cookies for a particular network request it will always tack those cookies onto the request, even if
credentials: "omit"is passed to the fetch API.This problem has been reported multiple times in #1274, which is an related issue that has been closed. I wanted to create a new issue to track it.
This problem makes it very difficult to fully encapsulate cookie logic within Javascript, and necessitates interacting directly with native cookie storage with something like
react-native-cookies. This is unfortunate, as there is no particular reason that cookies ought to be handled natively, and outside of this problem it is possible to handle cookies entirely in Javascript.Reproduction
Set-Cookieheader.Cookieheader is set by client. Confirm that this is happening.Solution
React Native on Android should respect the
credentials: 'omit'option.Additional Information
The text was updated successfully, but these errors were encountered: