chromium/src/third_party/blink/web_tests/http/tests/xmlhttprequest/resources/basic-auth/access-control-auth-basic.php - manifest_repos/chromium_src - Git at Google

 <?php

 header("Access-Control-Allow-Origin: http://127.0.0.1:8000");
 header("Access-Control-Allow-Credentials: true");

 if ($_SERVER['REQUEST_METHOD'] == "OPTIONS") {
     if (!isset($_COOKIE['foo'])) {
         header("Access-Control-Allow-Methods: PUT");
 	}
 } else {
     if (!isset($_SERVER['PHP_AUTH_USER']) || !isset($_REQUEST['uid']) || ($_REQUEST['uid'] != $_SERVER['PHP_AUTH_USER'])) {
         header('WWW-Authenticate: Basic realm="WebKit Test Realm/Cross Origin"');
         header('HTTP/1.0 401 Unauthorized');
         echo 'Authentication canceled';
         exit;
     } else {
         echo "User: {$_SERVER['PHP_AUTH_USER']}, password: {$_SERVER['PHP_AUTH_PW']}.";
     }
 }
 ?>
	<?php

	header("Access-Control-Allow-Origin: http://127.0.0.1:8000");
	header("Access-Control-Allow-Credentials: true");

	if ($_SERVER['REQUEST_METHOD'] == "OPTIONS") {
	if (!isset($_COOKIE['foo'])) {
	header("Access-Control-Allow-Methods: PUT");
	}
	} else {
	if (!isset($_SERVER['PHP_AUTH_USER']) \|\| !isset($_REQUEST['uid']) \|\| ($_REQUEST['uid'] != $_SERVER['PHP_AUTH_USER'])) {
	header('WWW-Authenticate: Basic realm="WebKit Test Realm/Cross Origin"');
	header('HTTP/1.0 401 Unauthorized');
	echo 'Authentication canceled';
	exit;
	} else {
	echo "User: {$_SERVER['PHP_AUTH_USER']}, password: {$_SERVER['PHP_AUTH_PW']}.";
	}
	}
	?>