Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(147)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: Source/core/xml/XMLHttpRequest.cpp

Issue 385493002: Revert of Update XMLHttpRequest forbidden header names. (Closed) Base URL: https://chromium.googlesource.com/chromium/blink.git@master
Patch Set: Created 6 years, 5 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « LayoutTests/http/tests/xmlhttprequest/set-dangerous-headers-expected.txt ('k') | Source/web/tests/AssociatedURLLoaderTest.cpp » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 /* 1 /*
2 * Copyright (C) 2004, 2006, 2008 Apple Inc. All rights reserved. 2 * Copyright (C) 2004, 2006, 2008 Apple Inc. All rights reserved.
3 * Copyright (C) 2005-2007 Alexey Proskuryakov <ap@webkit.org> 3 * Copyright (C) 2005-2007 Alexey Proskuryakov <ap@webkit.org>
4 * Copyright (C) 2007, 2008 Julien Chaffraix <jchaffraix@webkit.org> 4 * Copyright (C) 2007, 2008 Julien Chaffraix <jchaffraix@webkit.org>
5 * Copyright (C) 2008, 2011 Google Inc. All rights reserved. 5 * Copyright (C) 2008, 2011 Google Inc. All rights reserved.
6 * Copyright (C) 2012 Intel Corporation 6 * Copyright (C) 2012 Intel Corporation
7 * 7 *
8 * This library is free software; you can redistribute it and/or 8 * This library is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public 9 * modify it under the terms of the GNU Lesser General Public
10 * License as published by the Free Software Foundation; either 10 * License as published by the Free Software Foundation; either
(...skipping 75 matching lines...) Expand 10 before | Expand all | Expand 10 after
86 XMLHttpRequestStaticData::XMLHttpRequestStaticData() 86 XMLHttpRequestStaticData::XMLHttpRequestStaticData()
87 : m_proxyHeaderPrefix("proxy-") 87 : m_proxyHeaderPrefix("proxy-")
88 , m_secHeaderPrefix("sec-") 88 , m_secHeaderPrefix("sec-")
89 { 89 {
90 m_forbiddenRequestHeaders.add("accept-charset"); 90 m_forbiddenRequestHeaders.add("accept-charset");
91 m_forbiddenRequestHeaders.add("accept-encoding"); 91 m_forbiddenRequestHeaders.add("accept-encoding");
92 m_forbiddenRequestHeaders.add("access-control-request-headers"); 92 m_forbiddenRequestHeaders.add("access-control-request-headers");
93 m_forbiddenRequestHeaders.add("access-control-request-method"); 93 m_forbiddenRequestHeaders.add("access-control-request-method");
94 m_forbiddenRequestHeaders.add("connection"); 94 m_forbiddenRequestHeaders.add("connection");
95 m_forbiddenRequestHeaders.add("content-length"); 95 m_forbiddenRequestHeaders.add("content-length");
96 m_forbiddenRequestHeaders.add("content-transfer-encoding");
96 m_forbiddenRequestHeaders.add("cookie"); 97 m_forbiddenRequestHeaders.add("cookie");
97 m_forbiddenRequestHeaders.add("cookie2"); 98 m_forbiddenRequestHeaders.add("cookie2");
98 m_forbiddenRequestHeaders.add("date"); 99 m_forbiddenRequestHeaders.add("date");
99 m_forbiddenRequestHeaders.add("dnt");
100 m_forbiddenRequestHeaders.add("expect"); 100 m_forbiddenRequestHeaders.add("expect");
101 m_forbiddenRequestHeaders.add("host"); 101 m_forbiddenRequestHeaders.add("host");
102 m_forbiddenRequestHeaders.add("keep-alive"); 102 m_forbiddenRequestHeaders.add("keep-alive");
103 m_forbiddenRequestHeaders.add("origin"); 103 m_forbiddenRequestHeaders.add("origin");
104 m_forbiddenRequestHeaders.add("referer"); 104 m_forbiddenRequestHeaders.add("referer");
105 m_forbiddenRequestHeaders.add("te"); 105 m_forbiddenRequestHeaders.add("te");
106 m_forbiddenRequestHeaders.add("trailer"); 106 m_forbiddenRequestHeaders.add("trailer");
107 m_forbiddenRequestHeaders.add("transfer-encoding"); 107 m_forbiddenRequestHeaders.add("transfer-encoding");
108 m_forbiddenRequestHeaders.add("upgrade"); 108 m_forbiddenRequestHeaders.add("upgrade");
109 m_forbiddenRequestHeaders.add("user-agent"); 109 m_forbiddenRequestHeaders.add("user-agent");
(...skipping 1353 matching lines...) Expand 10 before | Expand all | Expand 10 after
1463 { 1463 {
1464 visitor->trace(m_responseBlob); 1464 visitor->trace(m_responseBlob);
1465 visitor->trace(m_responseStream); 1465 visitor->trace(m_responseStream);
1466 visitor->trace(m_responseDocument); 1466 visitor->trace(m_responseDocument);
1467 visitor->trace(m_progressEventThrottle); 1467 visitor->trace(m_progressEventThrottle);
1468 visitor->trace(m_upload); 1468 visitor->trace(m_upload);
1469 XMLHttpRequestEventTarget::trace(visitor); 1469 XMLHttpRequestEventTarget::trace(visitor);
1470 } 1470 }
1471 1471
1472 } // namespace WebCore 1472 } // namespace WebCore
OLDNEW
« no previous file with comments | « LayoutTests/http/tests/xmlhttprequest/set-dangerous-headers-expected.txt ('k') | Source/web/tests/AssociatedURLLoaderTest.cpp » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698