# File lib/rack/protection/base.rb, line 90 def origin(env) env['HTTP_ORIGIN'] || env['HTTP_X_ORIGIN'] end