XMLHttpRequest should not send DNT header

https://bugs.webkit.org/show_bug.cgi?id=128533 The DNT header should be set by web engines according user preferences. That includes all HTTP requests, including XHR requests. Unpriviledged web apps should not be allowed to override/interfere with user preferences. git-svn-id: http://svn.webkit.org/repository/webkit/trunk@163915 268f45cc-cd09-0410-ab3c-d52691b4dbfc Change-Id: I80bed1eb13826cdb3cfade3d51297f439b5016f4 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@theqtcompany.com>
author: Youenn Fablet <youennf@gmail.com> 2014-02-12 00:02:31 +0000
committer: Konstantin Tokarev <annulen@yandex.ru> 2016-01-29 13:59:47 +0000
commit: 76f23fc070e4ab8f0383f864585a0493a68d9b0d (patch)
tree: 727be698aa9e32edd85a07341c935645df0d776f
parent: 072f6acce94a98b5aca33cb2cacd567eaafaf9f3 (diff)
download: qtwebkit-76f23fc070e4ab8f0383f864585a0493a68d9b0d.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/Source/WebCore/xml/XMLHttpRequest.cpp b/Source/WebCore/xml/XMLHttpRequest.cpp
index 853ec4756..e854019bc 100644
--- a/Source/WebCore/xml/XMLHttpRequest.cpp
+++ b/Source/WebCore/xml/XMLHttpRequest.cpp
@@ -104,6 +104,7 @@ XMLHttpRequestStaticData::XMLHttpRequestStaticData()
     m_forbiddenRequestHeaders.add("cookie");
     m_forbiddenRequestHeaders.add("cookie2");
     m_forbiddenRequestHeaders.add("date");
+    m_forbiddenRequestHeaders.add("dnt");
     m_forbiddenRequestHeaders.add("expect");
     m_forbiddenRequestHeaders.add("host");
     m_forbiddenRequestHeaders.add("keep-alive");
author	Youenn Fablet <youennf@gmail.com>	2014-02-12 00:02:31 +0000
committer	Konstantin Tokarev <annulen@yandex.ru>	2016-01-29 13:59:47 +0000
commit	76f23fc070e4ab8f0383f864585a0493a68d9b0d (patch)
tree	727be698aa9e32edd85a07341c935645df0d776f
parent	072f6acce94a98b5aca33cb2cacd567eaafaf9f3 (diff)
download	qtwebkit-76f23fc070e4ab8f0383f864585a0493a68d9b0d.tar.gz