I have a Xojo Web app that works fine on most networks, but fails behind a customer’s corporate proxy (ProxySG / Blue Coat).
We traced the issue to X-Requested-With: XMLHttpRequest being added to Xojo’s client requests (via jQuery), which causes the browser to require a CORS preflight. The proxy appears to block or mishandle that preflight.
Removing X-Requested-With at the XHR level seems to resolves the issue and eliminates the preflight.
Is this a known issue with strict proxies?
Is there a better way to handle this?
Thank you for your help!