Index: Source/core/loader/FrameFetchContext.cpp |
diff --git a/Source/core/loader/FrameFetchContext.cpp b/Source/core/loader/FrameFetchContext.cpp |
index 208b1c540e5eb3ec74590b6b9117d6e78e68bbb0..82aeebe3ba2cc9b04fccf2735efeb15d19a31781 100644 |
--- a/Source/core/loader/FrameFetchContext.cpp |
+++ b/Source/core/loader/FrameFetchContext.cpp |
@@ -584,7 +584,7 @@ void FrameFetchContext::upgradeInsecureRequest(FetchRequest& fetchRequest) |
// Tack an 'HTTPS' header to outgoing navigational requests, as described in |
Avi (use Gerrit)
2015/07/15 04:47:32
This comment is now obsolete.
|
// https://w3c.github.io/webappsec/specs/upgrade/#feature-detect |
if (fetchRequest.resourceRequest().frameType() != WebURLRequest::FrameTypeNone) |
- fetchRequest.mutableResourceRequest().addHTTPHeaderField("HTTPS", "1"); |
+ fetchRequest.mutableResourceRequest().addHTTPHeaderField("Upgrade-Insecure-Requests", "1"); |
if (m_document && m_document->insecureRequestsPolicy() == SecurityContext::InsecureRequestsUpgrade && url.protocolIs("http")) { |
ASSERT(m_document->insecureNavigationsToUpgrade()); |