58475 – WebURLLoaderOptions shouldn't allow cross origin requests by default.

Bug 58475 - WebURLLoaderOptions shouldn't allow cross origin requests by default.

Summary: WebURLLoaderOptions shouldn't allow cross origin requests by default.

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Platform (show other bugs)
Version:	528+ (Nightly build)
Hardware:	All All

Importance:	P2 Normal
Assignee:	Nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2011-04-13 13:49 PDT by Bill Budge
Modified:	2011-04-14 02:39 PDT (History)
CC List:	2 users (show)

See Also:

Attachments
Proposed Patch (1.77 KB, patch) 2011-04-13 13:58 PDT, Bill Budge	no flags	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Bill Budge 2011-04-13 13:49:41 PDT

The cross origin request policy should be to disallow cross origin requests by default. This will make existing client code behave the same as before.

Comment 1 Bill Budge 2011-04-13 13:58:54 PDT

Created attachment 89451 [details]
Proposed Patch

Sorry for the churn, got this wrong somehow.

Comment 2 WebKit Commit Bot 2011-04-14 02:36:39 PDT

The commit-queue encountered the following flaky tests while processing attachment 89451 [details]:

http/tests/misc/favicon-loads-with-icon-loading-override.html bug 58412 (author: alice.liu@apple.com)
The commit-queue is continuing to process your patch.

Comment 3 WebKit Commit Bot 2011-04-14 02:39:19 PDT

Comment on attachment 89451 [details]
Proposed Patch

Clearing flags on attachment: 89451

Committed r83829: <http://trac.webkit.org/changeset/83829>

Comment 4 WebKit Commit Bot 2011-04-14 02:39:22 PDT

All reviewed patches have been landed.  Closing bug.