| Index: third_party/WebKit/Source/core/dom/ScriptLoader.cpp
|
| diff --git a/third_party/WebKit/Source/core/dom/ScriptLoader.cpp b/third_party/WebKit/Source/core/dom/ScriptLoader.cpp
|
| index b33f34f19aa2891a85c1daa62870e688f9a8b4e0..03a45ab7d7e6b41cc6c6efbf8e14232f04a839de 100644
|
| --- a/third_party/WebKit/Source/core/dom/ScriptLoader.cpp
|
| +++ b/third_party/WebKit/Source/core/dom/ScriptLoader.cpp
|
| @@ -292,8 +292,7 @@ bool ScriptLoader::fetchScript(const String& sourceUrl, FetchRequest::DeferOptio
|
| FetchRequest request(ResourceRequest(elementDocument->completeURL(sourceUrl)), m_element->localName());
|
|
|
| CrossOriginAttributeValue crossOrigin = crossOriginAttributeValue(m_element->fastGetAttribute(HTMLNames::crossoriginAttr));
|
| - if (crossOrigin != CrossOriginAttributeNotSet)
|
| - request.setCrossOriginAccessControl(elementDocument->getSecurityOrigin(), crossOrigin);
|
| + request.setCrossOriginAccessControl(elementDocument->getSecurityOrigin(), crossOrigin);
|
| request.setCharset(scriptCharset());
|
|
|
| // Skip fetch-related CSP checks if the script element has a valid nonce, or if dynamically
|
|
|
Chromium Code Reviews
Issue 1801513003:
Cross origin requests to same origin should match
Base URL: https://chromium.googlesource.com/chromium/src.git@master