[Webkit-unassigned] [Bug 165407] New: Test insecure-xhr-sync-in-main-frame.html fails with CORS error if run before r203542

Mon Dec 5 13:11:38 PST 2016

https://bugs.webkit.org/show_bug.cgi?id=165407

            Bug ID: 165407
           Summary: Test insecure-xhr-sync-in-main-frame.html fails with
                    CORS error if run before r203542
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Local Build
          Hardware: All
                OS: All
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: Tools / Tests
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: dbates at webkit.org
                CC: bfulgham at webkit.org, lforschler at apple.com,
                    wilander at apple.com

In <https://trac.webkit.org/changeset/203542> (bug #105462) the test LayoutTests/http/tests/security/mixedContent/insecure-xhr-sync-in-main-frame.html was added to ensure that we block loading insecure data via XHR from an HTTPS page. When this test is run prior to r203542 it fails due to a CORS errors (response cannot be read because it does not list 127.0.0.1:8000 in its Access-Control-Allow-Origin HTTP header) as opposed to showing the intended JavaScript alert failure message. For correctness, we should make this test fail as intended without the fix for r203542.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161205/bab43058/attachment.html>