Merged branch 'jetty-9.2.x' into 'master'.

jetty-servlets/src/main/java/org/eclipse/jetty/servlets/CrossOriginFilter.java

@@ -26,7 +26,6 @@ import java.util.Enumeration;
 import java.util.List;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
-
 import javax.servlet.Filter;
 import javax.servlet.FilterChain;
 import javax.servlet.FilterConfig;
@@ -69,15 +68,15 @@ import org.eclipse.jetty.util.log.Logger;
  * can be cached by the client. Default value is <b>1800</b> seconds, or 30
  * minutes</li>
  * <li><b>allowCredentials</b>, a boolean indicating if the resource allows
- * requests with credentials. Default value is <b>false</b></li>
+ * requests with credentials. Default value is <b>true</b></li>
  * <li><b>exposedHeaders</b>, a comma separated list of HTTP headers that
  * are allowed to be exposed on the client. Default value is the
  * <b>empty list</b></li>
  * <li><b>chainPreflight</b>, if true preflight requests are chained to their
  * target resource for normal handling (as an OPTION request).  Otherwise the
- * filter will response to the preflight. Default is true.</li>
+ * filter will response to the preflight. Default is <b>true</b>.</li>
  * </ul></p>
- * <p>A typical configuration could be:
+ * <p>A typical configuration could be:</p>
  * <pre>
  * &lt;web-app ...&gt;
  *     ...
@@ -91,7 +90,7 @@ import org.eclipse.jetty.util.log.Logger;
  *     &lt;/filter-mapping&gt;
  *     ...
  * &lt;/web-app&gt;
- * </pre></p>
+ * </pre>
  */
 public class CrossOriginFilter implements Filter
 {
@@ -193,7 +192,7 @@ public class CrossOriginFilter implements Filter
         exposedHeaders.addAll(Arrays.asList(exposedHeadersConfig.split(",")));
 
         String chainPreflightConfig = config.getInitParameter(OLD_CHAIN_PREFLIGHT_PARAM);
-        if (chainPreflightConfig!=null) // TODO remove this
+        if (chainPreflightConfig != null)
             LOG.warn("DEPRECATED CONFIGURATION: Use " + CHAIN_PREFLIGHT_PARAM + " instead of " + OLD_CHAIN_PREFLIGHT_PARAM);
         else
             chainPreflightConfig = config.getInitParameter(CHAIN_PREFLIGHT_PARAM);
@@ -393,7 +392,7 @@ public class CrossOriginFilter implements Filter
         return result;
     }
 
-    List<String> getAccessControlRequestHeaders (HttpServletRequest request)
+    private List<String> getAccessControlRequestHeaders(HttpServletRequest request)
     {
         String accessControlRequestHeaders = request.getHeader(ACCESS_CONTROL_REQUEST_HEADERS_HEADER);
         LOG.debug("{} is {}", ACCESS_CONTROL_REQUEST_HEADERS_HEADER, accessControlRequestHeaders);
@@ -411,7 +410,6 @@ public class CrossOriginFilter implements Filter
         return requestedHeaders;
     }
 
-    
     private boolean areHeadersAllowed(List<String> requestedHeaders)
     {
         if (anyHeadersAllowed)