private boolean checkCorsAndContinue(HttpRequestHolder requestHolder, final HttpResponseHolder responseHolder) { // Determines the CORS request type. CorsResponseDecorator.CORSRequestType requestType = checkRequestType(requestHolder); switch (requestType) { case SIMPLE: // Handles a Simple CORS request. return this.handleSimpleCORS(requestHolder, responseHolder); case ACTUAL: // Handles an Actual CORS request. return this.handleSimpleCORS(requestHolder, responseHolder); case PRE_FLIGHT: // Handles a Pre-flight CORS request. return this.handlePreflightCORS(requestHolder, responseHolder); case NOT_CORS: // Handles a Normal request that is not a cross-origin request. return true; default: // Handles a CORS request that violates specification. return this.handleInvalidCORS(requestHolder, responseHolder); } }
handleInvalidCORS(request, response); return false; CorsResponseDecorator.REQUEST_HEADER_ACCESS_CONTROL_REQUEST_METHOD); if (accessControlRequestMethod == null) { handleInvalidCORS(request, response); return false; } else { handleInvalidCORS(request, response); return false; for (String header : accessControlRequestHeaders) { if (!corsSupport.getAllowedHeaders().contains(header)) { handleInvalidCORS(request, response); return false;
handleInvalidCORS(request, response); return false; handleInvalidCORS(request, response); return false;
private boolean checkCorsAndContinue(HttpRequestHolder requestHolder, final HttpResponseHolder responseHolder) { // Determines the CORS request type. CorsResponseDecorator.CORSRequestType requestType = checkRequestType(requestHolder); switch (requestType) { case SIMPLE: // Handles a Simple CORS request. return this.handleSimpleCORS(requestHolder, responseHolder); case ACTUAL: // Handles an Actual CORS request. return this.handleSimpleCORS(requestHolder, responseHolder); case PRE_FLIGHT: // Handles a Pre-flight CORS request. return this.handlePreflightCORS(requestHolder, responseHolder); case NOT_CORS: // Handles a Normal request that is not a cross-origin request. return true; default: // Handles a CORS request that violates specification. return this.handleInvalidCORS(requestHolder, responseHolder); } }
handleInvalidCORS(request, response); return false; CorsResponseDecorator.REQUEST_HEADER_ACCESS_CONTROL_REQUEST_METHOD); if (accessControlRequestMethod == null) { handleInvalidCORS(request, response); return false; } else { handleInvalidCORS(request, response); return false; for (String header : accessControlRequestHeaders) { if (!corsSupport.getAllowedHeaders().contains(header)) { handleInvalidCORS(request, response); return false;
handleInvalidCORS(request, response); return false; handleInvalidCORS(request, response); return false;