Do security checks early in JSDOMWindow::put*() to make it less error-prone. Also lock-down further to return early when trying to set cross-origin any other property than "location" instead of relying only on individual setters to do the security checks.
Created attachment 271404 [details]
Comment on attachment 271404 [details]
Clearing flags on attachment: 271404
Committed r196628: <http://trac.webkit.org/changeset/196628>
All reviewed patches have been landed. Closing bug.