Skip to content
This repository has been archived by the owner on Apr 5, 2024. It is now read-only.

Commit

Permalink
Merge pull request #279 from mozilla/remove-browser
Browse files Browse the repository at this point in the history
Remove remnants of the browser-specific version
  • Loading branch information
djmitche authored Dec 11, 2020
2 parents 09d27b0 + 0b684f4 commit c61eedd
Show file tree
Hide file tree
Showing 3 changed files with 1 addition and 2,080 deletions.
3 changes: 1 addition & 2 deletions API.md
Original file line number Diff line number Diff line change
Expand Up @@ -323,7 +323,7 @@ Server-Authorization: Hawk mac="XIJRsMl/4oL+nn+vKoeVZPdCHXB4yJkNnBbTbHFZUYE=", h

## Browser Support and Considerations

A browser script is provided for including using a `<script>` tag in [lib/browser.js](/lib/browser.js). It's also a [component](http://component.io/hueniverse/hawk).
This library can be included in browser-based applications using Webpack or similar bundling technologies.

**Hawk** relies on the _Server-Authorization_ and _WWW-Authenticate_ headers in its response to communicate with the client.
Therefore, in case of CORS requests, it is important to consider sending _Access-Control-Expose-Headers_ with the value
Expand All @@ -334,7 +334,6 @@ can safely be accessed by the client (using getResponseHeader() on the XmlHttpRe
Hawk client from authenticating the requests.You can read more about the why and how in this
[article](http://www.html5rocks.com/en/tutorials/cors/#toc-adding-cors-support-to-the-server)


# Single URI Authorization

There are cases in which limited and short-term access to a protected resource is granted to a third party which does not
Expand Down
Loading

0 comments on commit c61eedd

Please sign in to comment.