Remove X-Brave-Partner from CORS safelist
#6041
Assignees
Labels
custom headers
OS/Android
Fixes related to Android browser functionality
OS/Desktop
QA/No
release-notes/exclude
sec-low
Milestone
Comments
32 tasks
bridiver
changed the title
X-Brave-Partner CORS request headerX-Brave-Partner header and CORS safelist
32 tasks
kkuehlz
added a commit
to brave/brave-core
that referenced
this issue
Jun 13, 2020
navigator.brave.isBrave() can be used to identify brave. Resolves brave/brave-browser#6041
|
Also see #16455 for an interim step in the deprecation process. |
|
This is now gone; we should remove the unused constant: |
|
Thanks @bsclifton I will use this issue for the CORS cleanup. |
fmarier
changed the title
X-Brave-Partner header and CORS safelistX-Brave-Partner from CORS safelist
fmarier
added a commit
to brave/brave-core
that referenced
this issue
Mar 11, 2024
…ave/brave-browser#6041) This reverts commit 0ffd590. It should have been removed as part of 4cb8c2f.
24 tasks
fmarier
added
OS/Android
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
Initially added after Chromium 77 upgrade with brave/brave-core#3434
Per security review, this should be a temporary change.
A great time to do this would be when switching to our own user-agent for partners (see #1052)
The text was updated successfully, but these errors were encountered: