From 95bd0cd599a729fceee436956a6839ff2d63fa43 Mon Sep 17 00:00:00 2001
From: foxable <12152164+foxable@users.noreply.github.com>
Date: Thu, 28 Nov 2019 08:43:25 +0100
Subject: [PATCH] Disable CORS by default

---
 Chutzpah/ChutzpahJSRunners/Chrome/chutzpahRunner.js | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/Chutzpah/ChutzpahJSRunners/Chrome/chutzpahRunner.js b/Chutzpah/ChutzpahJSRunners/Chrome/chutzpahRunner.js
index 57a39153..5da7d2be 100644
--- a/Chutzpah/ChutzpahJSRunners/Chrome/chutzpahRunner.js
+++ b/Chutzpah/ChutzpahJSRunners/Chrome/chutzpahRunner.js
@@ -250,8 +250,12 @@ module.exports.runner = async (onInitialized, onPageLoaded, isFrameworkLoaded, o
         chutzpahFunctions.rawLog("!!_!! Using Chrome Install : " + chromeExecutable);
         debugLog("Launch Chrome (" + chromeExecutable + "): Elevated= " + isRunningElevated);
 
+        // Disable CORS by default
+        var launchBrowserArges = ["--disable-web-security"];
         // If isRunningElevated, we need to turn off sandbox since it does not work with admin users
-        var launchBrowserArges = isRunningElevated ? ["--no-sandbox"] : [];
+        if (isRunningElevated) {
+            launchBrowserArges.push("--no-sandbox");
+        }
         if (browserArgs) {
             launchBrowserArges.push(...browserArgs.trim().split(" "));
         }