Hi,
I've a problem, uploading a file to a minio (or S3) repo using cef >86 (js, XMLHttpRequest).
When trying to send the preflight (OPTIONS) request I would expect that typically challenge/response ping pong with the proxy.
What happens is that cef sends exactly one request, the proxy answers with a 407 Proxy Authentication Required and that's it. No second try to connect, no authentication granted.
Doing exactly the same, using a Chrome-Browser or a cef, v86, with --disable-features=OutOfBlinkCors works perfectly.
Of course I tried a cef >86 with disabled proxy... works too.
Are there any new security/cors rules, I've to handle? Am I doing something wrong, or is this indeed a bug in cef?
Thx,
Toralion
Here's the request/response showing some details, recorded with Wireshark:
Request:
---------
OPTIONS http://SOMESERVER:9000/210/root/rep01/7 ... 8e55aaa4f7 HTTP/1.1
Host: SOMESERVER:9000
Proxy-Connection: keep-alive
Accept: */*
Access-Control-Request-Method: PUT
Access-Control-Request-Headers: content-md5,content-type,x-csrf-token
Origin: http://SOMESERVER:8080
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.90 Safari/537.36
Sec-Fetch-Mode: cors
Referer: http://SOMESERVER:8080/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Response:
---------
HTTP/1.1 407 Proxy Authentication Required
Server: squid/4.4
Mime-Version: 1.0
Date: Mon, 29 Mar 2021 09:41:41 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 4565
X-Squid-Error: ERR_CACHE_ACCESS_DENIED 0
Vary: Accept-Language
Content-Language: en-us
Proxy-Authenticate: NTLM
X-Cache: MISS from CentOSNTLMProxy
X-Cache-Lookup: NONE from CentOSNTLMProxy:3128
Via: 1.1 CentOSNTLMProxy (squid/4.4)
Connection: keep-alive