From 64d96646a353f611c0446a8a09a76e61b865abf9 Mon Sep 17 00:00:00 2001
From: Pierre de La Morinerie <kemenaran@gmail.com>
Date: Mon, 25 Nov 2019 14:18:50 +0100
Subject: [PATCH] javascript: autosave with explicit cookies settings

Older browsers implemented a different default value for `window.fetch`
credentials: it was omitted unless explicitely set.

So we force the value for these older browsers:

- Firefox 39-60
- Chrome 42-67
- Safari 10.1-11.1.2

See https://github.com/github/fetch#sending-cookies
---
 app/javascript/new_design/autosave-controller.js | 1 +
 1 file changed, 1 insertion(+)

diff --git a/app/javascript/new_design/autosave-controller.js b/app/javascript/new_design/autosave-controller.js
index 3d2c1acff..c0fed3c04 100644
--- a/app/javascript/new_design/autosave-controller.js
+++ b/app/javascript/new_design/autosave-controller.js
@@ -37,6 +37,7 @@ export default class AutosaveController {
       const fetchOptions = {
         method: form.method,
         body: formData,
+        credentials: 'same-origin',
         headers: { Accept: 'application/json' }
       };