From 1547e33151b932efab6094a16f5adefb3620d67b Mon Sep 17 00:00:00 2001
From: Long Nguyen <zcmgyu@gmail.com>
Date: Wed, 2 Oct 2019 14:03:54 +0900
Subject: [PATCH] Add method DELETE, PUT into allowedMethods of CORS

Because WebDriver also supports method DELETE,
so you couldn't use delete method unless adding that method
into allowed methods of Cross-Origin Filter.
---
 .../src/org/openqa/selenium/jetty/server/JettyServer.java       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/server/src/org/openqa/selenium/jetty/server/JettyServer.java b/java/server/src/org/openqa/selenium/jetty/server/JettyServer.java
index bc271c1491eb1..e9bd0c12858fd 100644
--- a/java/server/src/org/openqa/selenium/jetty/server/JettyServer.java
+++ b/java/server/src/org/openqa/selenium/jetty/server/JettyServer.java
@@ -110,7 +110,7 @@ public JettyServer(BaseServerOptions options, HttpHandler handler) {
       FilterHolder
           filterHolder = servletContextHandler.addFilter(CrossOriginFilter.class, "/*", EnumSet
           .of(DispatcherType.REQUEST));
-      filterHolder.setInitParameter("allowedOrigins", "*");
+      filterHolder.setInitParameter("allowedMethods", "GET,POST,PUT,DELETE,HEAD");
 
       // Warning user
       LOG.warning("You have enabled CORS requests from any host. "