[Webkit-unassigned] [Bug 101264] New: Local IFrame doesn't send HTTP REFERER when requesting resources

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Nov 5 14:59:55 PST 2012


https://bugs.webkit.org/show_bug.cgi?id=101264

           Summary: Local IFrame doesn't send HTTP REFERER when requesting
                    resources
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Unspecified
        OS/Version: Unspecified
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P2
         Component: HTML DOM
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: bradavogel at gmail.com


Created an attachment (id=172412)
 --> (https://bugs.webkit.org/attachment.cgi?id=172412&action=review)
repro case

Browsers tested:
Chrome Canary 25.0.1317.0 - FAIL
Webkit Nightly 6.0.2 (7536.26.17, 537+) - FAIL
Firefox 16.0.2 - PASS

Repro steps:
1) Run the attached test.html with the web inspector open.
2) Click the Network tab and click icon-gold.png.

Expected:
The HTTP REFERER header is sent when requesting the image.

Actual:
Notice that the HTTP REFERER header isn't sent when requesting the image. This is because the iframe doesn't have a 'src' attribute. However, the iframe is created and written into by the parent page, so it should send the parent page's REFERER.

This breaks sites that need to use a local iframe to sandbox css styles, and that iframe also loads external content that relies on HTTP REFERER.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list