[Webkit-unassigned] [Bug 130398] [WK2][GTK] Expose the enable-web-security property in WebKit2GTK API
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jul 3 09:42:28 PDT 2014
https://bugs.webkit.org/show_bug.cgi?id=130398
--- Comment #9 from Mario Sanchez Prada <mario at webkit.org> 2014-07-03 09:42:44 PST ---
More from IRC:
<KaL> msanchez: I don't have any proposal because I don't even know what those checks are
<msanchez> KaL: I was talking about the "same-origin" policy
<KaL> ah, cross-origin problems
<msanchez> where the browser won't allow executing scripts coming from a different origin/domain/whatever than the one the document belongs to
<msanchez> or something like that (not an expert either)
<msanchez> yes
<KaL> yes, I see
<msanchez> it seems to be a major problem for some test suites
<msanchez> and I can imagine there might be very especific use cases where people might want to disable those too
<KaL> sounds like everybody will turn that off the first time they face a cross-origin issue
<msanchez> well, IMHO depending on the audience of a given browser, that browser might want to expose that setting or not
<KaL> but anyway, if kov and mrobinson are fine, I'm not opposed
Martin, Gustavo... what's your take?
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list