Authentication popup on RPC request
When loading sao with an expired session, some browsers (at least Chrome) raise an authentication dialog (not the sao one).
This is because trytond returns a 401 with the WWW-Authenticate header.
A solution is to not set this header for XMLHttpRequest like proposed on https://stackoverflow.com/a/20221330