98408 – Clarify the "unsafe JavaScript attempt to access ..." message.

NEW Bug 98408

Clarify the "unsafe JavaScript attempt to access ..." message.

https://bugs.webkit.org/show_bug.cgi?id=98408

Summary Clarify the "unsafe JavaScript attempt to access ..." message.

Mike West

Reported 2012-10-04 07:49:23 PDT

Report from a user, with regard to the "Unsafe JavaScript attempt to access frame with URL $X from frame with URL $Y. Domains, protocols and ports must match." console warning: "What was accessed? What was unsafe about it? Which one(s) of domain, protocol, and port didn't match? Why does this error spam the console in apps (e.g. Gmail) that continue to work perfectly?" We've made a few changes to this (sandboxing, for example), but we can certainly do more to provide some context. This at least partially overlaps with 43504.

Attachments
Add attachment proposed patch, testcase, etc.

Mike West

Comment 1 2012-10-04 07:50:48 PDT

Two users specifically complained about Vimeo's player generating this error, might be a good place to start.

Note You need to log in before you can comment on or make changes to this bug.

Status NEW

Resolution

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware Unspecified

OS Unspecified

Product WebKit

Component WebCore Misc.

Assignee

Nobody

Reported

2012-10-04 07:49 PDT

Modified

2012-10-04 07:50 PDT History

CC List

0 users

URL

Keywords

Depends on

43504

Blocks

97978

Dependancies

tree graph