[Webkit-unassigned] [Bug 36625] Modify NotificationPresenter::checkPermission() to pass the full source url rather than just the security origin
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Mar 25 17:05:10 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=36625
Adam Barth <abarth at webkit.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #51693|review? |review+
Flag| |
--- Comment #6 from Adam Barth <abarth at webkit.org> 2010-03-25 17:05:10 PST ---
(From update of attachment 51693)
Ok. There might be some subtle issues if a sandboxed iframe tries to use the
notification API. With this design, it might inherit the privileges of its
origin. Would you be willing to file a bug about that issue and attach a test
case?
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list