Bug 179473 - iFrame with src="about:blank" is treated as insecure document. It should inherit the origin.
Summary: iFrame with src="about:blank" is treated as insecure document. It should inhe...
Status: NEW
Alias: None
Product: WebKit
Classification: Unclassified
Component: WebRTC (show other bugs)
Version: Safari 11
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Nobody
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2017-11-09 04:29 PST by Adam Szmyd
Modified: 2021-11-30 09:38 PST (History)
10 users (show)

See Also:

Attachments
Example of use case (282 bytes, text/html)
2017-11-09 04:29 PST, Adam Szmyd 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Adam Szmyd 2017-11-09 04:29:56 PST 
Created attachment 326442 [details]
Example of use case

When i try to use `getUserMedia` from an anonymous iFrame in current Safari 11 (11.0.1) which i have i get an error "Trying to call getUserMedia from an insecure document."

The same case works properly on Safari Technology Preview Release 43 (Safari 11.1, WebKit 13605.1.12).

Question is - has i been fixed in TP and will be released to next Safari release or (the fact that its working in Safari TP) it just a side effect of some other changes?
 
If seems like this one is related to it: https://bugs.webkit.org/show_bug.cgi?id=155405 but i cannot find any information in which version was it released.
Comment 1 Radar WebKit Bug Importer 2017-11-10 14:29:22 PST 
<rdar://problem/35478260>
Comment 2 Joel Glovacki 2019-09-18 02:04:04 PDT 
I'm seeing this too, and it seems to have the side effect of ruining popstate events. the about:blank iframes created by google maps endlessly run with no time outs. popstate events get super wonky, the current page gets duplicated so back needs to be pressed multiple times.