Request.credentials

Baseline Widely available

This feature is well established and works across many devices and browser versions. It’s been available across browsers since March 2017.

credentialsRequest接口的只读属性,用于表示用户代理是否应该在跨域请求的情况下从其他域发送 cookies。这与 XHR 的 withCredentials 标志相似,不同的是有三个可选值(后者是两个):

  • omit: 从不发送 cookies.
  • same-origin: 只有当 URL 与响应脚本同源才发送 cookies、HTTP Basic authentication 等验证信息.(浏览器默认值,在旧版本浏览器,例如 safari 11 依旧是 omit,safari 12 已更改)
  • include: 不论是不是跨域的请求,总是发送请求资源域在本地的 cookies、HTTP Basic authentication 等验证信息。

语法

js
var myCred = request.credentials;

Value

举例

在以下代码中,我们使用Request.Request()创建了一个新的 request(为了一个与脚本在同一目录下的图片文件),接着将 request credentials 存入一个变量:

js
var myRequest = new Request("flowers.jpg");
var myCred = myRequest.credentials; // returns "same-origin" by default

规范

Specification
Fetch
# ref-for-dom-request-credentials②

浏览器兼容性

Report problems with this compatibility data on GitHub
desktopmobileserver
Chrome
Edge
Firefox
Opera
Safari
Chrome Android
Firefox for Android
Opera Android
Safari on iOS
Samsung Internet
WebView Android
WebView on iOS
Deno
Node.js
credentials
Default value same-origin

Legend

Tip: you can click/tap on a cell for more information.

Full support
Full support
No support
No support

See also