chromium/src/third_party/blink/web_tests/http/tests/fetch/resources/filtered-response.php - manifest_repos/chromium_src - Git at Google

 <?php
 // Headers filtered in 'basic filtered response'
 header('Set-Cookie: cookie3=test-cookie');
 header('Set-Cookie2: cookie4=test-cookie2');

 $content = "Success.";

 // Headers NOT filtered in 'CORS filtered response'
 header('Cache-Control: private, no-store, no-cache, must-revalidate');
 header('Content-Language: test-content-language');
 header('Content-Length: ' . strlen($content));
 header('Content-Type: test-content-type');
 header('Expires: test-expires');
 header('Last-Modified: test-last-modified');
 header('Pragma: test-pragma');
 if (isset($_GET['ACEHeaders']))
     header("Access-Control-Expose-Headers: {$_GET['ACEHeaders']}");

 // Other headers
 header('X-test: test-x-test');
 header('X-test2: test-x-test2');

 header('Access-Control-Allow-Origin: *');

 echo $content;
 ?>
	<?php
	// Headers filtered in 'basic filtered response'
	header('Set-Cookie: cookie3=test-cookie');
	header('Set-Cookie2: cookie4=test-cookie2');

	$content = "Success.";

	// Headers NOT filtered in 'CORS filtered response'
	header('Cache-Control: private, no-store, no-cache, must-revalidate');
	header('Content-Language: test-content-language');
	header('Content-Length: ' . strlen($content));
	header('Content-Type: test-content-type');
	header('Expires: test-expires');
	header('Last-Modified: test-last-modified');
	header('Pragma: test-pragma');
	if (isset($_GET['ACEHeaders']))
	header("Access-Control-Expose-Headers: {$_GET['ACEHeaders']}");

	// Other headers
	header('X-test: test-x-test');
	header('X-test2: test-x-test2');

	header('Access-Control-Allow-Origin: *');

	echo $content;
	?>