[webkit-reviews] review granted: [Bug 36625] Modify NotificationPresenter::checkPermission() to pass the full source url rather than just the security origin : [Attachment 51693] Patch
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Mar 25 17:05:09 PDT 2010
Adam Barth <abarth at webkit.org> has granted Rafael Weinstein
<rafaelw at chromium.org>'s request for review:
Bug 36625: Modify NotificationPresenter::checkPermission() to pass the full
source url rather than just the security origin
https://bugs.webkit.org/show_bug.cgi?id=36625
Attachment 51693: Patch
https://bugs.webkit.org/attachment.cgi?id=51693&action=review
------- Additional Comments from Adam Barth <abarth at webkit.org>
Ok. There might be some subtle issues if a sandboxed iframe tries to use the
notification API. With this design, it might inherit the privileges of its
origin. Would you be willing to file a bug about that issue and attach a test
case?
More information about the webkit-reviews
mailing list