VueJs and VueResource, removing header fields from a Ajax request

Question

When I instantiate a Vuejs (2.2.6) and Vue-resource (1.2.1), I set the header authorization with the following code, this way I can authorize all requests to my API:

Vue.http.headers.common.AUTHORIZATION = 'BEARER ...';

However, I want to make a request for a third party API, and I do not want the Authorization field to be sent. Additionally, this API does not allow you to use this authorization header.

let CEP = '';

this.$http.get('https://viacep.com.br/ws/' + CEP + '/json')
    .then(response => {
        console.log(response.headers);
    });

This way the authorization field is sent with the header, on Access-Control-Request-Headers:

I tried to remove some header fields with the following codes, without success.

this.$http.headers.common.AUTHORIZATION = null;
this.$http.headers.common['Access-Control-Allow-Headers'] = null;

this.$http.get('https://viacep.com.br/ws/' + CEP + '/json')
    .then(response => {
        console.log(response.headers);
    });

In the vue-resource documentation, there is the possibility of inserting an object to force the request configuration, but the documentation isn't complete.

this.$http.get('https://viacep.com.br/ws/' + CEP + '/json', {
   ...here...
}).then(response => {
    console.log(response.headers);
});

Is there any way to remove the Authorization field, or any other field from a given request?
Thanks.

* UPDATED *

By using the interceptors (as in the below sample) I can edit the request but I can not delete a particular field.

Vue.http.interceptors.push((request, next) => {

    const viacep = request.url.includes('viacep.com.br');

    if (viacep) {
        request.headers.set('AUTHORIZATION', 'TRY THIS');
    }

    next(response => {});
});

Try to Delete:

Vue.http.interceptors.push((request, next) => {

    const viacep = request.url.includes('viacep.com.br');

    if (viacep) {
        request.headers.delete('AUTHORIZATION');
    }

    next(response => {});
});

Bert · Accepted Answer · 2017-04-05T22:54:44.600

10

Use an interceptor, inspect the request, and remove the header if needed.

Vue.http.interceptors.push(function(request, next) {

  const removeAuthHeaders = request.url.includes("viacep.com.br");

  if (removeAuthHeaders){
    request.headers.delete('Access-Control-Allow-Headers')
    request.headers.delete('AUTHORIZATION')
  }
  else {
    request.headers.set('Access-Control-Allow-Headers', <value>)
    request.headers.set('AUTHORIZATION', <value>)
  }
  next();
});

edited Apr 05 '17 at 22:54

answered Apr 05 '17 at 22:42

Bert

80,741
17
199
164

It's unbelievable, I can set/modify but I can not delete! – Thiago Pereira Apr 06 '17 at 00:25
1

@ThiagoPereira I think it may be because you assigned them to `.common`. Can you *not* do that and just assign them as I did above? – Bert Apr 06 '17 at 00:42
The `request.headers.common` inside interceptor is `undefined`, I'm using you example, when I try to delete the token nothing happens. Please see the above prints. Your think this is wrong: `Vue.http.headers.common.AUTHORIZATION = 'Bearer: ...';` – Thiago Pereira Apr 06 '17 at 00:52
@ThiagoPereira I'm trying to say, if you have run this line somewhere, `Vue.http.headers.common.Authorization = `, then it **cannot** be removed. If you do *not* do that, and just add the authorization header *only* in the interceptor when needed, then you should be ok. – Bert Apr 06 '17 at 01:12

VueJs and VueResource, removing header fields from a Ajax request

1 Answers1