[Webkit-unassigned] [Bug 68032] Banned request headers sent in XHR calls to cross-domain targets

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Feb 27 13:23:02 PST 2012


Alexey Proskuryakov <ap at webkit.org> changed:

           What    |Removed                     |Added
             Status|UNCONFIRMED                 |RESOLVED
         Resolution|                            |INVALID

--- Comment #5 from Alexey Proskuryakov <ap at webkit.org>  2012-02-27 13:23:02 PST ---
These tests do not attempt to send custom header fields, they only check that something was sent.

It is forbidden to set these headers to non-default values using XMLHttpRequest.setRequestHeader(), but it's perfectly OK for the browser to provide its own value. Please see <http://dvcs.w3.org/hg/xhr/raw-file/tip/Overview.html> for more detail.

•    Accept-Language

This header field is an exception, authors are actually allowed to change it with XMLHttpRequest.setRequestHeader().

Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list