Bug 37087 - HTTPS site, hit button button, page is refetched, however some of the form inputs is from cache
Summary: HTTPS site, hit button button, page is refetched, however some of the form in...
Status: RESOLVED DUPLICATE of bug 26241
Alias: None
Product: WebKit
Classification: Unclassified
Component: Forms (show other bugs)
Version: 420+
Hardware: All All
: P4 Normal
Assignee: Nobody
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-04-05 07:59 PDT by abfmwei
Modified: 2010-04-05 15:25 PDT (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description abfmwei 2010-04-05 07:59:26 PDT 
This is how the exception can be reproduced on a secure HTTPS web site,

1. Hit a secure HTTPS page - HTTP GET, hidden input __EVENTVALIDATION = 'jkdlsfjalfdsja'
2. Hit a button on the page - HTTP POST
3. Server responds with 302 redirect - HTTP GET, hidden input __EVENTVALIDATION = 'dfjkslaiowed'
4. Hit Back button, page is refetched - HTTP GET, hidden input __EVENTVALIDATION = 'dfjkslaiowed'
5. Hit a button on the page - HTTP POST, traffic sniffer shows __EVENTVALIDATION = 'jkdlsfjalfdsja', while it should be __EVENTVALIDATION = 'dfjkslaiowed'
Comment 1 Kent Tamura 2010-04-05 15:25:21 PDT 
This issue was fixed very recently.

*** This bug has been marked as a duplicate of bug 26241 ***