Changeset 47873 in webkit
- Timestamp:
- Aug 28, 2009 2:16:54 PM (15 years ago)
- Location:
- trunk/LayoutTests
- Files:
-
- 2 edited
-
ChangeLog (modified) (1 diff)
-
http/tests/xmlhttprequest/set-dangerous-headers.html (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/LayoutTests/ChangeLog
r47864 r47873 1 2009-08-28 Julie Parent <jparent@chromium.org> 2 3 Reviewed by Alexey Proskuryakov. 4 5 set-dangerous-headers.html shouldn't set allowed header to same value 6 as forbidden headers. AUTHORIZATION is an allowed header, and the 7 value is being set to "foobar" like the forbidden headers, which causes 8 the test to fail when run using http server that doesn't strip the 9 AUTHORIZATION header. 10 https://bugs.webkit.org/show_bug.cgi?id=28818 11 12 * http/tests/xmlhttprequest/set-dangerous-headers.html: 13 1 14 2009-08-28 Jan Michael Alonzo <jmalonzo@webkit.org> 2 15 -
trunk/LayoutTests/http/tests/xmlhttprequest/set-dangerous-headers.html
r41547 r47873 14 14 req.setRequestHeader("ACCESS-CONTROL-REQUEST-HEADERS", "foobar"); 15 15 req.setRequestHeader("ACCESS-CONTROL-REQUEST-METHOD", "foobar"); 16 req.setRequestHeader("AUTHORIZATION", "foobar"); 16 // AUTHORIZATION is no longer forbidden. See 17 // https://bugs.webkit.org/show_bug.cgi?id=24957 for more details. Set to 18 // a value other than the foobar since some http servers (lighttp) do not 19 // strip this out (Apache does). 20 req.setRequestHeader("AUTHORIZATION", "baz"); 17 21 req.setRequestHeader("CONNECTION", "foobar"); 18 22 req.setRequestHeader("CONTENT-LENGTH", "123456");
Note: See TracChangeset
for help on using the changeset viewer.
