Implement step 17 of main fetch algorithm
Created attachment 446708 [details] Patch
This patch modifies the imported WPT tests. Please ensure that any changes on the tests (not coming from a WPT import) are exported to WPT. Please see https://trac.webkit.org/wiki/WPTExportProcess
Comment on attachment 446708 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=446708&action=review r=me > LayoutTests/imported/w3c/web-platform-tests/service-workers/service-worker/resources/fetch-csp-iframe.html.sub.headers:1 > +Content-Security-Policy: img-src https://{{host}}:{{ports[https][0]}}; connect-src 'unsafe-inline' 'self' Do you know if this new connect-src rule is needed because of a bug in our CSP implementation?
(In reply to Brent Fulgham from comment #3) > Comment on attachment 446708 [details] > Patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=446708&action=review > > r=me > > > LayoutTests/imported/w3c/web-platform-tests/service-workers/service-worker/resources/fetch-csp-iframe.html.sub.headers:1 > > +Content-Security-Policy: img-src https://{{host}}:{{ports[https][0]}}; connect-src 'unsafe-inline' 'self' > > Do you know if this new connect-src rule is needed because of a bug in our > CSP implementation? It is needed because the rule was only about image and we are now adding a restriction to fetch loads as well.
<rdar://problem/85388372>
Committed r286940 (245165@main): <https://commits.webkit.org/245165@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 446708 [details].