I have a react app with custom user-auth built using json web token. When the user is authenticated during login, it stores the jwt in localstorage. Elsewhere in the application I make a completely unrelated axios call to GitHub to retrieve my project's issues from the API. This data should be visible via the public routes, not requiring a user to be signed in to use.
If no user is currently logged in (i.e., localstorage is empty, without token) the GitHub axios call works as expected. However, if there is a token being stored in local-storage the browser returns the following CORS error:
"Request header field x-auth-token is not allowed by Access-Control-Allow-Headers in preflight response."
Here is what my axios call looks like:
import axios from "axios";
export default {
getIssues: function () {
return new Promise((resolve, reject) => {
axios
.get("https://api.github.com/repos/lucsedirae/open-house-crm/issues")
.then((res) => {
const issues = res.data;
const results = issues.map((issue) => {
return {
title: issue.title,
ghUser: issue.user.login,
state: issue.state,
createdAt: issue.created_at,
updatedAt: issue.updated_at,
description: issue.body,
number: issue.number,
comments: issue.comments,
};
});
resolve(results);
})
.catch((err) => reject(err));
});
},
};
Is there a way to get the GitHub axios call to ignore the json web token? I've tried researching different headers or options using the cors package on my server.js but to no avail.
question from:https://stackoverflow.com/questions/65838258/github-api-get-request-is-automatically-sending-x-auth-token