274444 2024-05-20 23:16:22 -0700 Credential Management API shouldn't allow method calls on non-fully active docs 2025-10-07 12:19:39 -0700 1 1 1 Unclassified WebKit WebCore Misc. Other Unspecified Unspecified RESOLVED FIXED InRadar P2 Normal --- 1 marcosc marcosc webkit-bug-importer yarik02819xx oldest_to_newest 2036616 0 marcosc 2024-05-20 23:16:22 -0700 The following CredentialContainer methods all allow operations if a document is not fully active: .get() .store() .create() .preventSilentAccess() However, we probably shouldn't allow that. Spec change: https://github.com/w3c/webappsec-credential-management/pull/230 2037277 1 webkit-bug-importer 2024-05-23 01:44:08 -0700 <rdar://problem/128595290> 2037278 2 marcosc 2024-05-23 01:46:47 -0700 Pull request: https://github.com/WebKit/WebKit/pull/28979 2037848 3 ews-feeder 2024-05-24 21:18:18 -0700 Committed 279309@main (0864a389355b): <https://commits.webkit.org/279309@main> Reviewed commits have been landed. Closing PR #28979 and removing active labels.