Changeset 59528 in webkit
- Timestamp:
- May 15, 2010 2:10:44 AM (14 years ago)
- Location:
- trunk
- Files:
-
- 6 edited
-
LayoutTests/ChangeLog (modified) (1 diff)
-
LayoutTests/http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-expected.txt (modified) (1 diff)
-
LayoutTests/http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-in-body-expected.txt (modified) (1 diff)
-
LayoutTests/http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-parent-same-origin-deny-expected.txt (modified) (1 diff)
-
WebCore/ChangeLog (modified) (1 diff)
-
WebCore/dom/Document.cpp (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/LayoutTests/ChangeLog
r59517 r59528 1 2010-05-15 Adam Barth <abarth@webkit.org> 2 3 Reviewed by Darin Adler. 4 5 Show a console message when X-Frame-Options blocks a load 6 https://bugs.webkit.org/show_bug.cgi?id=39087 7 8 Update expected results to show the console message. 9 10 * http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-expected.txt: 11 * http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-in-body-expected.txt: 12 * http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-parent-same-origin-deny-expected.txt: 13 1 14 2010-05-14 Adam Barth <abarth@webkit.org> 2 15 -
trunk/LayoutTests/http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-expected.txt
r46809 r59528 3 3 http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe.html - didReceiveResponse <NSURLResponse http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe.html, http status code 200> 4 4 http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe.html - didFailLoadingWithError: <NSError domain NSURLErrorDomain, code -999, failing URL "http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe.html"> 5 CONSOLE MESSAGE: line 1: Refused to display document because display forbidden by X-Frame-Options. 6 5 7 about:blank - willSendRequest <NSURLRequest URL about:blank, main document URL http://127.0.0.1:8000/security/XFrameOptions/x-frame-options-deny-meta-tag.html, http method GET> redirectResponse (null) 6 8 about:blank - didReceiveResponse <NSURLResponse about:blank, http status code 0> -
trunk/LayoutTests/http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-in-body-expected.txt
r46809 r59528 3 3 http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-in-body.html - didReceiveResponse <NSURLResponse http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-in-body.html, http status code 200> 4 4 http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-in-body.html - didFailLoadingWithError: <NSError domain NSURLErrorDomain, code -999, failing URL "http://127.0.0.1:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-in-body.html"> 5 CONSOLE MESSAGE: line 1: Refused to display document because display forbidden by X-Frame-Options. 6 5 7 about:blank - willSendRequest <NSURLRequest URL about:blank, main document URL http://127.0.0.1:8000/security/XFrameOptions/x-frame-options-deny-meta-tag-in-body.html, http method GET> redirectResponse (null) 6 8 about:blank - didReceiveResponse <NSURLResponse about:blank, http status code 0> -
trunk/LayoutTests/http/tests/security/XFrameOptions/x-frame-options-deny-meta-tag-parent-same-origin-deny-expected.txt
r46809 r59528 3 3 http://localhost:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-parent-same-origin-deny.html - didReceiveResponse <NSURLResponse http://localhost:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-parent-same-origin-deny.html, http status code 200> 4 4 http://localhost:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-parent-same-origin-deny.html - didFailLoadingWithError: <NSError domain NSURLErrorDomain, code -999, failing URL "http://localhost:8000/security/XFrameOptions/resources/x-frame-options-deny-meta-tag-subframe-parent-same-origin-deny.html"> 5 CONSOLE MESSAGE: line 1: Refused to display document because display forbidden by X-Frame-Options. 6 5 7 about:blank - willSendRequest <NSURLRequest URL about:blank, main document URL http://127.0.0.1:8000/security/XFrameOptions/x-frame-options-deny-meta-tag-parent-same-origin-deny.html, http method GET> redirectResponse (null) 6 8 about:blank - didReceiveResponse <NSURLResponse about:blank, http status code 0> -
trunk/WebCore/ChangeLog
r59526 r59528 1 2010-05-15 Adam Barth <abarth@webkit.org> 2 3 Reviewed by Darin Adler. 4 5 Show a console message when X-Frame-Options blocks a load 6 https://bugs.webkit.org/show_bug.cgi?id=39087 7 8 The blank page confuses people when X-Frame-Options blocks a load. The 9 console message should at least give them a hint as to what's going on. 10 11 * dom/Document.cpp: 12 (WebCore::Document::processHttpEquiv): 13 1 14 2010-05-15 Ilya Tikhonovsky <loislo@chromium.org> 2 15 -
trunk/WebCore/dom/Document.cpp
r59486 r59528 2309 2309 frameLoader->stopAllLoaders(); 2310 2310 frame->redirectScheduler()->scheduleLocationChange(blankURL(), String()); 2311 2312 DEFINE_STATIC_LOCAL(String, consoleMessage, ("Refused to display document because display forbidden by X-Frame-Options.\n")); 2313 frame->domWindow()->console()->addMessage(JSMessageSource, LogMessageType, ErrorMessageLevel, consoleMessage, 1, String()); 2311 2314 } 2312 2315 }
Note: See TracChangeset
for help on using the changeset viewer.
