New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: disable CORS when webSecurity is disabled #25463
Conversation
Release Notes Persisted
|
I have automatically backported this PR to "10-x-y", please check out #25503 |
I have automatically backported this PR to "11-x-y", please check out #25504 |
I have automatically backported this PR to "9-x-y", please check out #25505 |
mark |
I had issues with an older version where cors wasn't being disabled by setting websecurity to false. |
@vrunhofen please open a new issue with a standalone test case, preferably using Electron Fiddle. Thanks! |
issue was fixed in electron/electron#25463 it will now be disabled when with webSecurity: false
issue was fixed in electron/electron#25463 it will now be disabled when with webSecurity: false
Description of Change
Close #23664.
Chromium has moved some web security controls from blink to browser, this PR updates our code to also disable web security in browser.
Checklist
npm test
passesRelease Notes
Notes: Fix CORS not being disabled by
webSecurity: false
.