Bug 238019
| Summary: | CSP: report upon attempting to consume a forbidden preloaded resource | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Noam Rosenthal <noam> |
| Component: | Page Loading | Assignee: | Nobody <webkit-unassigned> |
| Status: | NEW | ||
| Severity: | Normal | CC: | beidson, webkit-bug-importer |
| Priority: | P2 | Keywords: | InRadar |
| Version: | WebKit Nightly Build | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
Noam Rosenthal
See https://github.com/whatwg/fetch/pull/1411 for spec
and https://github.com/web-platform-tests/wpt/pull/33205 for failing test
1. Open a page with CSP forbidding images
2. Load an image with a <link rel=preload as=image />
2. Consume the same image with <img />
The expected (newly spec'ed) behavior:
- the forbidden attempt to request the image should be reported twice
The actual result:
- One report
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Radar WebKit Bug Importer
<rdar://problem/90638057>