Prevents sending of 'orgin' in the "Access-Control-Request-Headers" when preflight requests are mad…

Source/core/loader/CrossOriginAccessControl.h

Index: Source/core/loader/CrossOriginAccessControl.h
diff --git a/Source/core/loader/CrossOriginAccessControl.h b/Source/core/loader/CrossOriginAccessControl.h
index 7ab67b636e1b01f2d970b618a6f4ec418c54a6aa..cf7e5544f49e1013e9bf478dfbd16e18ecdcaea2 100644
--- a/Source/core/loader/CrossOriginAccessControl.h
+++ b/Source/core/loader/CrossOriginAccessControl.h
@@ -45,7 +45,7 @@ bool isOnAccessControlSimpleRequestMethodWhitelist(const String&);
 bool isOnAccessControlSimpleRequestHeaderWhitelist(const String& name, const String& value);
 bool isOnAccessControlResponseHeaderWhitelist(const String&);
 
-void updateRequestForAccessControl(ResourceRequest&, SecurityOrigin*, StoredCredentials);
+void updateRequestForAccessControl(ResourceRequest&, StoredCredentials, SecurityOrigin* = 0);

[bbudge, 2013/07/15 17:00:25]

If you don't supply a default parameter value, you can leave the ordering
unchanged. I think I prefer the original parameter ordering too.

Then you will have to explicitly pass a NULL parameter at the call site where
you want to prevent sending the origin. I think that will help make the code
clearer too.

[ancilgeorge, 2013/07/16 06:26:27]

Done.

 ResourceRequest createAccessControlPreflightRequest(const ResourceRequest&, SecurityOrigin*);
 
 bool passesAccessControlCheck(const ResourceResponse&, StoredCredentials, SecurityOrigin*, String& errorDescription);