[Webkit-unassigned] [Bug 130398] [WK2][GTK] Expose the enable-web-security property in WebKit2GTK API
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jul 8 08:43:25 PDT 2014
https://bugs.webkit.org/show_bug.cgi?id=130398
--- Comment #10 from Mario Sanchez Prada <mario at webkit.org> 2014-07-08 08:43:41 PST ---
(In reply to comment #9)
> More from IRC:
>
> <KaL> msanchez: I don't have any proposal because I don't even know what those checks are
> <msanchez> KaL: I was talking about the "same-origin" policy
> <KaL> ah, cross-origin problems
> <msanchez> where the browser won't allow executing scripts coming from a different origin/domain/whatever than the one the document belongs to
> <msanchez> or something like that (not an expert either)
> <msanchez> yes
> <KaL> yes, I see
> <msanchez> it seems to be a major problem for some test suites
> <msanchez> and I can imagine there might be very especific use cases where people might want to disable those too
> <KaL> sounds like everybody will turn that off the first time they face a cross-origin issue
> <msanchez> well, IMHO depending on the audience of a given browser, that browser might want to expose that setting or not
> <KaL> but anyway, if kov and mrobinson are fine, I'm not opposed
>
>
> Martin, Gustavo... what's your take?
Ping again?
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list