Title: Wrong value for access-control-allow-credentials
Last modified: January 16, 2024

---

# Wrong value for access-control-allow-credentials

 *  Resolved [oyvindwe](https://wordpress.org/support/users/oyvindwe/)
 * (@oyvindwe)
 * [2 years, 4 months ago](https://wordpress.org/support/topic/wrong-value-for-access-control-allow-credentials/)
 * In version 1.2.2 when checking “Allow Credentials”, the header value is 1 instead
   of true:
 *     ```wp-block-code
       access-control-allow-credentials: 1
       ```
   

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Author [Dev Kabir](https://wordpress.org/support/users/devkabir/)
 * (@devkabir)
 * [2 years, 4 months ago](https://wordpress.org/support/topic/wrong-value-for-access-control-allow-credentials/#post-17347044)
 * Hello [@oyvindwe](https://wordpress.org/support/users/oyvindwe/),
 * Thank you for getting in touch.
 * You can set the value of Access-Control-Allow-Credentials to 1 instead of true.
   As far as I have checked, it’s working fine.
 * However, it is recommended to use the Boolean value true instead of the string
   value 1. I will include your fix in the next update.
 *  Thread Starter [oyvindwe](https://wordpress.org/support/users/oyvindwe/)
 * (@oyvindwe)
 * [2 years, 4 months ago](https://wordpress.org/support/topic/wrong-value-for-access-control-allow-credentials/#post-17347247)
 * Thank you very much! I didn’t check the RFC, only MDN, which claims that the 
   only allowed value is `true` (case sensitive): [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials#directives](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials#directives)

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Wrong value for access-control-allow-credentials’ is closed to new replies.

 * ![](https://ps.w.org/enable-cors/assets/icon-256x256.png?rev=2889819)
 * [Enable CORS](https://wordpress.org/plugins/enable-cors/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/enable-cors/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/enable-cors/)
 * [Active Topics](https://wordpress.org/support/plugin/enable-cors/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/enable-cors/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/enable-cors/reviews/)

 * 3 replies
 * 2 participants
 * Last reply from: [oyvindwe](https://wordpress.org/support/users/oyvindwe/)
 * Last activity: [2 years, 4 months ago](https://wordpress.org/support/topic/wrong-value-for-access-control-allow-credentials/#post-17347247)
 * Status: resolved