Preflight requests are added for all non GET/POST requests, as well as GET/POST requests with non standard headers to prevent servers from receiving any requests that it wouldn't have received before CORS came to be.
Why were GET/POST implementations on all servers a standard before CORS? Why can we surely assume that every server will handle GET/POST requests but not PUT/DELETE ones?
Aucun commentaire:
Enregistrer un commentaire