[Webkit-unassigned] [Bug 59819] Sync XHRs are rejected when the cases of the origin and destination hosts are different

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Apr 29 13:27:05 PDT 2011


https://bugs.webkit.org/show_bug.cgi?id=59819


Jessie Berlin <jberlin at webkit.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|KURL.cpp should normalize   |Sync XHRs are rejected when
                   |the URL authority (host) to |the cases of the origin and
                   |lowercase                   |destination hosts are
                   |                            |different




--- Comment #3 from Jessie Berlin <jberlin at webkit.org>  2011-04-29 13:27:05 PST ---
Further IRC discussion:

abarth: I think that the answer is to use SecurityOrigin::canRequest() when checking for redirects during XMLHttpRequest (and eventually, we need to stop blocking redirects, and implement what the spec says)
<abarth> that should work
<ap> abarth: we also need to audit all other uses of protocolHostAndPortAreEqual() which is only used in appcache code, and probably replace all those with SecurityOrigin invocations

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list