Reason: expected ‘true’ in CORS header ‘Access-Control-Allow-Credentials’
The CORS request requires that the server permit the use of credentials, but the server's Access-Control-Allow-Credentials header's value isn't set to true to enable their use.
To fix this problem on the client side, revise the code to not request the use of credentials.
XMLHttpRequest, make sure you're not setting withCredentials to true.EventSource.withCredentials is false (it's the default value).Request.credentials is "omit".To eliminate this error by changing the server's configuration, adjust the server's configuration to set the Access-Control-Allow-Credentials header's value to true.
© 2005–2018 Mozilla Developer Network and individual contributors.
Licensed under the Creative Commons Attribution-ShareAlike License v2.5 or later.
https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS/Errors/CORSMIssingAllowCredentials