Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Honor existing Origin header when using WebSockets, otherwise use sec…
…… …ured scheme for wss, close #1448 Motivation: When performing initial WebSocket HTTP request, we force Origin header. This is wrong, as Origin might use a different domain than WebSocket url. Also, when computing default Origin, it would make sense to use a secure scheme when using secured sockets. Modifications: * Don’t override existing Origin header * Use https for wss Result: It’s now possible to set Origin on a different domain. Better default
- Loading branch information