<html>

    <head>

      <base href="https://bugs.webkit.org/" />

    </head>

    <body><table border="1" cellspacing="0" cellpadding="8">

        <tr>

          <th>Bug ID</th>

          <td><a class="bz_bug_link 

          bz_status_NEW "

   title="NEW - Cross-origin requests in web platform tests are broken?"

   href="https://bugs.webkit.org/show_bug.cgi?id=168220">168220</a>

          </td>

        </tr>

        <tr>

          <th>Summary</th>

          <td>Cross-origin requests in web platform tests are broken?

          </td>

        </tr>

        <tr>

          <th>Classification</th>

          <td>Unclassified

          </td>

        </tr>

        <tr>

          <th>Product</th>

          <td>WebKit

          </td>

        </tr>

        <tr>

          <th>Version</th>

          <td>WebKit Nightly Build

          </td>

        </tr>

        <tr>

          <th>Hardware</th>

          <td>Unspecified

          </td>

        </tr>

        <tr>

          <th>OS</th>

          <td>Unspecified

          </td>

        </tr>

        <tr>

          <th>Status</th>

          <td>NEW

          </td>

        </tr>

        <tr>

          <th>Severity</th>

          <td>Normal

          </td>

        </tr>

        <tr>

          <th>Priority</th>

          <td>P2

          </td>

        </tr>

        <tr>

          <th>Component</th>

          <td>Tools / Tests

          </td>

        </tr>

        <tr>

          <th>Assignee</th>

          <td>webkit-unassigned&#64;lists.webkit.org

          </td>

        </tr>

        <tr>

          <th>Reporter</th>

          <td>simon.fraser&#64;apple.com

          </td>

        </tr>

        <tr>

          <th>CC</th>

          <td>lforschler&#64;apple.com

          </td>

        </tr></table>

      <p>

        <div>

        <pre>imported/w3c/web-platform-tests/html/browsers/browsing-the-web/history-traversal/persisted-user-state-restoration/scroll-restoration-fragment-scrolling-cross-origin.html

does the following:

        iframe.src = iframe.src.replace(&quot;http://&quot;, &quot;<a href="http://www">http://www</a>.&quot;).replace(&quot;page-with-fragment.html#fragment&quot;, &quot;blank1.html&quot;);

which sets the frame source to <a href="http://www.localhost:8800/html/browsers/browsing-the-web/history-traversal/persisted-user-state-restoration/resources/blank1.html">http://www.localhost:8800/html/browsers/browsing-the-web/history-traversal/persisted-user-state-restoration/resources/blank1.html</a>

We seem to block this:

Blocked access to external URL <a href="http://www.localhost:8800/html/browsers/browsing-the-web/history-traversal/persisted-user-state-restoration/resources/blank1.html">http://www.localhost:8800/html/browsers/browsing-the-web/history-traversal/persisted-user-state-restoration/resources/blank1.html</a>

Also loading that url in Safari fails (when the server is running), but chrome loads it fine. I think maybe we have to treat subdomains of localhost specially?</pre>

        </div>

      </p>

      <hr>

      <span>You are receiving this mail because:</span>

      <ul>

          <li>You are the assignee for the bug.</li>

      </ul>

    </body>

</html>