spacewander commented on issue #3593: URL: https://github.com/apache/apisix/issues/3593#issuecomment-781856696
> When the call is made by the backend of the webapp (and by setting manually the Authorization header from the request from the webapp to request to the external api) > But when the call is made directly by the webapplication (using Cors) there is no session cookies in the request nor Authorization header Does the external API return the Authorization header and the web application send it back in the CORS request? ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
