fetch/sec-metadata/resources/echo-as-json.py - external/w3c/web-platform-tests - Git at Google

 import json

 def main(request, response):
     headers = [("Content-Type", "application/json"),
                ("Access-Control-Allow-Credentials", "true")]

     if "origin" in request.headers:
         headers.append(("Access-Control-Allow-Origin", request.headers["origin"]))

     body = ""

     # If we're in a preflight, verify that `Sec-Fetch-Mode` is `cors`.
     if request.method == 'OPTIONS':
         if request.headers.get("sec-fetch-mode") != "cors":
             return (403, "Failed"), [], body

         headers.append(("Access-Control-Allow-Methods", "*"))
         headers.append(("Access-Control-Allow-Headers", "*"))
     else:
         body = json.dumps({
             "dest": request.headers.get("sec-fetch-dest", ""),
             "mode": request.headers.get("sec-fetch-mode", ""),
             "site": request.headers.get("sec-fetch-site", ""),
             "user": request.headers.get("sec-fetch-user", ""),
             })

     return headers, body
	import json

	def main(request, response):
	headers = [("Content-Type", "application/json"),
	("Access-Control-Allow-Credentials", "true")]

	if "origin" in request.headers:
	headers.append(("Access-Control-Allow-Origin", request.headers["origin"]))

	body = ""

	# If we're in a preflight, verify that `Sec-Fetch-Mode` is `cors`.
	if request.method == 'OPTIONS':
	if request.headers.get("sec-fetch-mode") != "cors":
	return (403, "Failed"), [], body

	headers.append(("Access-Control-Allow-Methods", "*"))
	headers.append(("Access-Control-Allow-Headers", "*"))
	else:
	body = json.dumps({
	"dest": request.headers.get("sec-fetch-dest", ""),
	"mode": request.headers.get("sec-fetch-mode", ""),
	"site": request.headers.get("sec-fetch-site", ""),
	"user": request.headers.get("sec-fetch-user", ""),
	})

	return headers, body