How to prevent/override authorization header in Safari?

I had this problem and probably it's a bug in Safari.

The request from Safari:

The same request in Wireshark:

Solution: don't use basic auth or change the authorization header name (e.g. use X-My-Api-Auth).

I have had a similair situation, it worked fine in Chrome/Firefox but Edge and mobile browsers had issues. The only problem i had was that i could not change the header that is used for JWT authentication (Authorization).

So instead, i used a custom header for the JWT token in my client app:

$.ajaxSetup({  headers: {'X-JWT': accessToken}});

And in my webserver config (Nginx), i overwrite the Authorization header with my custom JWT header X-JWT:

        underscores_in_headers on;        location /api/ {                auth_basic off;                proxy_set_header X-Real-IP $remote_addr;                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;                proxy_set_header X-NginX-Proxy true;                proxy_pass http://127.0.0.1:8002/;                proxy_set_header Authorization $http_x_jwt;                proxy_ssl_session_reuse off;                proxy_set_header Host $http_host;                proxy_redirect off;        }

CodeHunter

How to prevent/override authorization header in Safari?

Recent Posts

How can I color dots in a xy scatterplot according to column value?

How to update a claim in ASP.NET Identity?

What does {0} mean when initializing an object?

Accessing members of items in a JSONArray with Java

How to log SQL statements in Spring Boot?

Powershell Get-WebSite name parameter is ignored

How to detect scroll to bottom of html element

Java synchronized method

How to test controllers with CodeIgniter?

Detect Visual Composer

Matplotlib: Specify format of floats for tick labels

Rails join a list of strings with commas and "and" before the last