From 1fe8733a064c55024bc384691813772d4c94665d Mon Sep 17 00:00:00 2001
From: aj <aj@daplie.com>
Date: Wed, 30 Aug 2017 21:47:13 +0000
Subject: [PATCH] allow Cookies with CORS requests (TODO: only for assets)

---
 oauth3.core.js | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/oauth3.core.js b/oauth3.core.js
index 881556e..b3644f0 100644
--- a/oauth3.core.js
+++ b/oauth3.core.js
@@ -915,12 +915,8 @@
             });
           };
 
-          console.log('$$$$$$$$$$$$$$$$$$$$$$$$ preq.progress:');
-          console.log(preq.progress);
           if (preq.progress) {
             xhr.upload.onprogress = function (ev) {
-              console.log('[progress]');
-              console.log(ev);
               preq.progress({
                 loaded: ev.loaded
               , total: ev.total
@@ -932,6 +928,8 @@
             };
           }
           xhr.open(preq.method || 'GET', preq.url, true);
+          // For assets.example.com/assets
+          xhr.withCredentials = true;
 
           if (preq.data) {
             headers['Content-Type'] = 'application/json'; // TODO XXX TODO utf8