Avoid defaulting crossOrigin attribute

Defaulting the crossOrigin attribute to 'anonymous' causes browsers to not send credentials along with the request, even if the request is not cross origin (at least with Chrome). A better default is to not set the cross origin attribute, allowing browsers to behave normally. Users in a cross origin environment can override this value.

Avoid defaulting crossOrigin attribute
Defaulting the crossOrigin attribute to 'anonymous' causes browsers to not send credentials along with the request, even if the request is not cross origin (at least with Chrome). A better default is to not set the cross origin attribute, allowing browsers to behave normally. Users in a cross origin environment can override this value.
b350f9da · Scott Andrews · bf52d56f · b350f9da · b350f9da
隐藏空白更改
内联并排

Showing with 3 addition and 3 deletion

src/extras/ImageUtils.js src/extras/ImageUtils.js +1 -1

src/loaders/Loader.js src/loaders/Loader.js +2 -2

未找到文件。
--- a/src/extras/ImageUtils.js
+++ b/src/extras/ImageUtils.js
@@ -5,7 +5,7 @@

 THREE.ImageUtils = {

-	crossOrigin: 'anonymous',
+	crossOrigin: undefined,

 	loadTexture: function ( url, mapping, onLoad, onError ) {


--- a/src/loaders/Loader.js
+++ b/src/loaders/Loader.js
@@ -17,7 +17,7 @@ THREE.Loader.prototype = {

 	constructor: THREE.Loader,

-	crossOrigin: 'anonymous',
+	crossOrigin: undefined,

 	addStatusElement: function () {

@@ -138,7 +138,7 @@ THREE.Loader.prototype = {

 			};

-			image.crossOrigin = _this.crossOrigin;
+			if ( _this.crossOrigin !== undefined ) image.crossOrigin = _this.crossOrigin;
 			image.src = url;

 		}