Bug 161316

Summary: We should throw a SecurityError when denying access to cross-origin Window properties
Product: WebKit Reporter: Chris Dumez <cdumez>
Component: DOMAssignee: Chris Dumez <cdumez>
Status: RESOLVED FIXED    
Severity: Normal CC: achristensen, cdumez, commit-queue, darin, dbates, ggaren, mkwst, rniwa, sam
Priority: P2 Keywords: WebExposed
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
See Also: https://bugs.webkit.org/show_bug.cgi?id=161270
https://bugs.webkit.org/show_bug.cgi?id=161248
https://bugs.webkit.org/show_bug.cgi?id=161339
Attachments:
Description Flags
Patch none

Chris Dumez
Reported 2016-08-29 10:55:49 PDT
We should throw a SecurityError when denying access to cross-origin Window properties: - https://html.spec.whatwg.org/#crossorigingetownpropertyhelper-(-o,-p-) - https://html.spec.whatwg.org/#crossoriginproperties-(-o-) Firefox and Chrome already throw.
Attachments
Patch (309.27 KB, patch)
2016-08-29 11:37 PDT, Chris Dumez 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Chris Dumez
Comment 1 2016-08-29 11:37:59 PDT
Created attachment 287291 [details] Patch
WebKit Commit Bot
Comment 2 2016-08-29 12:38:58 PDT
Comment on attachment 287291 [details] Patch Clearing flags on attachment: 287291 Committed r205136: <http://trac.webkit.org/changeset/205136>
WebKit Commit Bot
Comment 3 2016-08-29 12:39:03 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.