I'm trying to send form data to a web service, but below the "Request Header" in the "Network" Chrome DOM, I got the source "evil.com" and the referent "localhost: 8080".
Accept:application/json, text/plain, */* Accept-Encoding:gzip, deflate Accept-Language:nb-NO,nb;q=0.8,no;q=0.6,nn;q=0.4,en-US;q=0.2,en;q=0.2 Connection:keep-alive Content-Length:91 Content-Type:application/x-www-form-urlencoded; charset=UTF-8; Host:office.insoft.net:9091 Origin:http://evil.com/ Referer:http://localhost:8080/ User-Agent:Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2230.0 Safari/537.36
I want to switch to a different origin, and "localhost: 8080" will be the best source.
How to solve this problem?
google-chrome web-services header same-origin-policy
รystein Drablรธs Dec 04 '14 at 11:06 2014-12-04 11:06
source share