Skip to content

Commit 67570bd

Browse files
ablanathtanalbaablanathtanalba
committed
strip x-client-data headers from requests in webrequest script
1 parent 60901cd commit 67570bd

File tree

1 file changed

+6
-6
lines changed

1 file changed

+6
-6
lines changed

src/js/webrequest.js

+6-6
Original file line numberDiff line numberDiff line change
@@ -142,11 +142,11 @@ function onBeforeSendHeaders(details) {
142142
if (_isTabChromeInternal(tab_id)) {
143143
// DNT policy requests: strip cookies
144144
if (type == "xmlhttprequest" && url.endsWith("/.well-known/dnt-policy.txt")) {
145-
// remove Cookie headers
145+
// remove Cookie headers and X-Client-Data headers
146146
let newHeaders = [];
147147
for (let i = 0, count = details.requestHeaders.length; i < count; i++) {
148148
let header = details.requestHeaders[i];
149-
if (header.name.toLowerCase() != "cookie") {
149+
if (header.name.toLowerCase() != "cookie" && header.name.toLowerCase() != "x-client-data") {
150150
newHeaders.push(header);
151151
}
152152
}
@@ -187,10 +187,10 @@ function onBeforeSendHeaders(details) {
187187
if (action == constants.COOKIEBLOCK || action == constants.USER_COOKIEBLOCK) {
188188
let newHeaders;
189189

190-
// GET requests: remove cookie headers, reduce referrer header to origin
190+
// GET requests: remove cookie headers and X-client-data headers, reduce referrer header to origin
191191
if (details.method == "GET") {
192192
newHeaders = details.requestHeaders.filter(header => {
193-
return (header.name.toLowerCase() != "cookie");
193+
return (header.name.toLowerCase() != "cookie" && header.name.toLowerCase() != "x-client-data");
194194
}).map(header => {
195195
if (header.name.toLowerCase() == "referer") {
196196
header.value = header.value.slice(
@@ -201,10 +201,10 @@ function onBeforeSendHeaders(details) {
201201
return header;
202202
});
203203

204-
// remove cookie and referrer headers otherwise
204+
// remove cookie, referrer, and X-Client-Data headers otherwise
205205
} else {
206206
newHeaders = details.requestHeaders.filter(header => {
207-
return (header.name.toLowerCase() != "cookie" && header.name.toLowerCase() != "referer");
207+
return (header.name.toLowerCase() != "cookie" && header.name.toLowerCase() != "referer" && header.name.toLowerCase() != "x-client-data");
208208
});
209209
}
210210

0 commit comments

Comments
 (0)