XF 2.2 Headers not making it to the server

MJ0730

Active member
In postman I can make a request to the xf api without issue, but when doing it with the fetch api on localhost, I get an error about the api key not being present. It's in the headers, and I can see it in the dev tools. Access-Control-Allow-Origin is set in .htaccess, not sure if there's anything else I'm missing which would be causing the headers to not reach the server.
 
Are you has XF-Api-Key in Access-Control-Allow-Headers?
 
Are you has XF-Api-Key in Access-Control-Allow-Headers?
I didn't, but it's still not working. htaccess has
Header set Access-Control-Allow-Origin "*" Header set Access-Control-Allow-Headers XF-Api-Key

and the fetch request has
JavaScript:
fetch(url, {
      method: 'POST',
      mode: 'cors',
      headers: {
        'Content-Type': 'application/x-www-form-urlencoded',
        'XF-Api-Key': key,
        'XF-Api-User': user,
      },
      referrerPolicy: 'origin-when-cross-origin',
      body: new URLSearchParams({ login: login, password: pw }),
    })
 
Top Bottom