| Index: Source/core/fetch/CrossOriginAccessControl.cpp
|
| diff --git a/Source/core/fetch/CrossOriginAccessControl.cpp b/Source/core/fetch/CrossOriginAccessControl.cpp
|
| index bc49ccd769b63648e250fd8af6a9ed1dbf9abdee..dfb030980ab0b27a8f3c72e523a1eb3618fe1f92 100644
|
| --- a/Source/core/fetch/CrossOriginAccessControl.cpp
|
| +++ b/Source/core/fetch/CrossOriginAccessControl.cpp
|
| @@ -240,7 +240,7 @@ bool CrossOriginAccessControl::handleRedirect(Resource* resource, SecurityOrigin
|
| bool allowRedirect = isLegalRedirectLocation(requestURL, errorDescription);
|
| if (allowRedirect) {
|
| // Step 5: perform resource sharing access check.
|
| - StoredCredentials withCredentials = resource->resourceRequest().allowStoredCredentials() ? AllowStoredCredentials : DoNotAllowStoredCredentials;
|
| + StoredCredentials withCredentials = resource->lastResourceRequest().allowStoredCredentials() ? AllowStoredCredentials : DoNotAllowStoredCredentials;
|
| allowRedirect = passesAccessControlCheck(redirectResponse, withCredentials, securityOrigin, errorDescription);
|
| if (allowRedirect) {
|
| RefPtr<SecurityOrigin> originalOrigin = SecurityOrigin::create(originalURL);
|
|
|
Chromium Code Reviews
Issue 196043002:
HTML Imports: Send credentials for same origin requests (Closed)
Base URL: svn://svn.chromium.org/blink/trunk