fix: don't send cookies if we have an access token (#288)

ijsnow · web-flow · commit 7ae84fdbac76 · 2018-10-29T22:47:47.000-07:00
diff --git a/src/shared/backend/graphql.tsx b/src/shared/backend/graphql.tsx
@@ -68,7 +68,7 @@ function requestGraphQL<T extends GQL.IGraphQLResponseRoot>({
                 url: `${url}/.api/graphql` + queryName,
                 headers,
                 crossDomain: true,
-                withCredentials: true,
+                withCredentials: !(headers && headers.authorization),
                 body: JSON.stringify({ query: request, variables }),
                 async: true,
             }).pipe(
diff --git a/src/shared/backend/lsp.tsx b/src/shared/backend/lsp.tsx
@@ -52,7 +52,7 @@ const request = (url: string, method: string, requests: any[]): Observable<AjaxR
                 url: `${url}/.api/xlang/${method || ''}`,
                 headers,
                 crossDomain: true,
-                withCredentials: true,
+                withCredentials: !(headers && headers.authorization),
                 body: JSON.stringify(requests),
                 async: true,
             })
