[Webkit-unassigned] [Bug 7731] Cross site XMLHttpRequest doesn't even initialize
bugzilla-daemon at opendarwin.org
bugzilla-daemon at opendarwin.org
Sun Mar 12 00:41:53 PST 2006
http://bugzilla.opendarwin.org/show_bug.cgi?id=7731
ap at nypop.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |ap at nypop.com
Status|NEW |RESOLVED
Component|JavaScript |XML DOM
Resolution| |INVALID
------- Comment #6 from ap at nypop.com 2006-03-12 00:41 PDT -------
Cross-site XMLHttpRequests aren't allowed, the script should be from the same
domain that the request URI has. WebKit specifically allows scripts running
from local files to make any request; this is needed for Dashboard widgets.
Firefox raises an exception on attempts to use cross-site requests, unless the
script is signed and granted special privileges. WebKit simply ignores such
attempts, which is a known bug (it should also raise an exception).
--
Configure bugmail: http://bugzilla.opendarwin.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list