fix(warn): Refused to get unsafe header "www-authenticate"

Joxit · Sep 13, 2021 · 21e3ad5 · 21e3ad5
1 parent 73613a3
commit 21e3ad5
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 4 deletions.
diff --git a/dist/docker-registry-ui.js b/dist/docker-registry-ui.js
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "docker-registry-ui",
-  "version": "2.0.8",
+  "version": "2.0.9",
   "scripts": {
     "start": "ROLLUP_SERVE=true rollup -c -w",
     "build": "rollup -c",

diff --git a/src/scripts/http.js b/src/scripts/http.js
@@ -53,7 +53,8 @@ export class Http {
       case 'loadend': {
         self.oReq.addEventListener('loadend', function () {
           if (this.status == 401 && !this.withCredentials) {
-            const tokenAuth = parseAuthenticateHeader(this.getResponseHeader('www-authenticate'));
+            const tokenAuth =
+              this.hasHeader('www-authenticate') && parseAuthenticateHeader(this.getResponseHeader('www-authenticate'));
             self.onAuthentication(tokenAuth, (bearer) => {
               const req = new XMLHttpRequest();
               req._url = self._url;
@@ -65,7 +66,7 @@ export class Http {
                 req.setRequestHeader(key, self._headers[key]);
               }
               if (bearer && bearer.token) {
-                req.setRequestHeader('Authorization', `Bearer ${bearer.token}`)
+                req.setRequestHeader('Authorization', `Bearer ${bearer.token}`);
               } else {
                 req.withCredentials = true;
               }