Ignore null header

author: Martin Polden <mpolden@mpolden.no> 2021-02-10 14:13:51 +0100
committer: Martin Polden <mpolden@mpolden.no> 2021-02-10 14:13:51 +0100
commit: 02f0859ff81c6fdb1965ca5b183335173a793929 (patch)
tree: 239ac363e96beab0c760eb781ca1f79105e74897 /jdisc-security-filters
parent: 96faf76fdfd71551f52e9d038bad24e8f98bc301 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cors/CorsLogic.java b/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cors/CorsLogic.java
index 185984deeec..3d8a661d5d1 100644
--- a/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cors/CorsLogic.java
+++ b/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cors/CorsLogic.java
@@ -39,7 +39,7 @@ class CorsLogic {
     static Map<String, String> createCorsPreflightResponseHeaders(String requestOriginHeader,
                                                                   Set<String> allowedOrigins) {
         TreeMap<String, String> headers = new TreeMap<>();
-        if (allowedOrigins.contains(requestOriginHeader))
+        if (requestOriginHeader != null && allowedOrigins.contains(requestOriginHeader))
             headers.put(ALLOW_ORIGIN_HEADER, requestOriginHeader);
         ACCESS_CONTROL_HEADERS.forEach(headers::put);
         return headers;
author	Martin Polden <mpolden@mpolden.no>	2021-02-10 14:13:51 +0100
committer	Martin Polden <mpolden@mpolden.no>	2021-02-10 14:13:51 +0100
commit	02f0859ff81c6fdb1965ca5b183335173a793929 (patch)
tree	239ac363e96beab0c760eb781ca1f79105e74897 /jdisc-security-filters
parent	96faf76fdfd71551f52e9d038bad24e8f98bc301 (diff)