| CORS - Access-Control-Allow-Credentials |
| |
| |
| PASS Setting withCredentials on a sync XHR object should not throw |
| PASS Don't send cookie by default |
| FAIL Don't send cookie part 2 assert_equals: Cookie sent in withCredentials=true sync request expected "COOKIE" but got "NO_COOKIE" |
| FAIL Don't obey Set-Cookie when withCredentials=false assert_equals: third expected "COOKIE" but got "NO_COOKIE" |
| PASS Access-Control-Allow-Credentials: TRUE should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: True should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: "true" should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: 'true' should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: false should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: 1 should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: 0 should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: ,true should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: true, should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: true%0B should be disallowed (async) |
| PASS Access-Control-Allow-Credentials: true%0C should be disallowed (async) |
| |
