| Index: third_party/WebKit/Source/core/loader/DocumentThreadableLoader.cpp
|
| diff --git a/third_party/WebKit/Source/core/loader/DocumentThreadableLoader.cpp b/third_party/WebKit/Source/core/loader/DocumentThreadableLoader.cpp
|
| index cd542a6b764249f938680e4c78ccff602cf896f5..885be895e4535404c983aa8bc722a9679c31399d 100644
|
| --- a/third_party/WebKit/Source/core/loader/DocumentThreadableLoader.cpp
|
| +++ b/third_party/WebKit/Source/core/loader/DocumentThreadableLoader.cpp
|
| @@ -455,16 +455,15 @@ void DocumentThreadableLoader::makeCrossOriginAccessRequest(
|
| effectiveAllowCredentials(), crossOriginRequest.httpMethod(),
|
| crossOriginRequest.httpHeaderFields());
|
| if (canSkipPreflight && !shouldForcePreflight) {
|
| - if (getSecurityOrigin())
|
| - crossOriginRequest.setHTTPOrigin(getSecurityOrigin());
|
| - if (m_overrideReferrer)
|
| - crossOriginRequest.setHTTPReferrer(m_referrerAfterRedirect);
|
| -
|
| prepareCrossOriginRequest(crossOriginRequest);
|
| loadRequest(crossOriginRequest, crossOriginOptions);
|
| } else {
|
| - ResourceRequest preflightRequest = createAccessControlPreflightRequest(
|
| - crossOriginRequest, getSecurityOrigin());
|
| + ResourceRequest preflightRequest =
|
| + createAccessControlPreflightRequest(crossOriginRequest);
|
| + // TODO(tyoshino): Call prepareCrossOriginRequest(preflightRequest) to
|
| + // also set the referrer header.
|
| + if (getSecurityOrigin())
|
| + preflightRequest.setHTTPOrigin(getSecurityOrigin());
|
|
|
| // Create a ResourceLoaderOptions for preflight.
|
| ResourceLoaderOptions preflightOptions = crossOriginOptions;
|
| @@ -473,7 +472,6 @@ void DocumentThreadableLoader::makeCrossOriginAccessRequest(
|
| m_actualRequest = crossOriginRequest;
|
| m_actualOptions = crossOriginOptions;
|
|
|
| - prepareCrossOriginRequest(crossOriginRequest);
|
| loadRequest(preflightRequest, preflightOptions);
|
| }
|
| }
|
|
|
Chromium Code Reviews
Issue 2635023003:
Fix a bug in origin header generation for CORS preflight in extensions (Closed)
