Re: [whatwg/fetch] Tests do not always require Origin header when mode is "cors" (#871) from Yutaka Hirano on 2019-02-18 (public-webapps-github@w3.org from February 2019)

From: Yutaka Hirano <notifications@github.com>
Date: Mon, 18 Feb 2019 01:53:20 -0800
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/871/464663539@github.com>

Hm, I've been thinking it's intentional. [Chrome implementation](https://cs.chromium.org/chromium/src/services/network/cors/cors_url_loader.cc?q=cors_url_loader.cc&sq=package:chromium&g=0&l=372) is aligned with the current spec. I don't have a good reason not to add an origin header when mode is "cors" and CORS flag is unset.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/871#issuecomment-464663539

Received on Monday, 18 February 2019 09:53:41 UTC