Changeset 74609 in webkit

Timestamp:

Dec 23, 2010 8:06:26 PM (13 years ago)

Author:

ariya@webkit.org

Message:

[Qt] User name/password stripped from URLs
​https://bugs.webkit.org/show_bug.cgi?id=36232

Patch by Jan Erik Hanssen <​jhanssen@sencha.com> on 2010-12-23
Reviewed by Adam Barth.

WebCore:

If a username but no password or no username but a password is present
in a URL, QtWebKit won't send any authentication information down to Qt
as it should.

Tests: http/tests/xmlhttprequest/basic-auth-nopassword.html

http/tests/xmlhttprequest/basic-auth-nouser.html

• platform/network/qt/ResourceHandleQt.cpp:

(WebCore::ResourceHandle::start):
(WebCore::ResourceHandle::loadResourceSynchronously):

LayoutTests:

Test authentication cases where a username but no password and
no username but a password is present.

• http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
• http/tests/xmlhttprequest/basic-auth-nopassword.html: Added.
• http/tests/xmlhttprequest/basic-auth-nouser-expected.txt: Added.
• http/tests/xmlhttprequest/basic-auth-nouser.html: Added.
• http/tests/xmlhttprequest/resources/basic-auth-nouserpass/basic-auth-nouserpass.php: Added.
• platform/gtk/Skipped:
• platform/mac-leopard/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
• platform/mac-snowleopard/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
• platform/mac-tiger/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
• platform/qt/Skipped:

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt (added)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-nopassword.html (added)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-nouser-expected.txt (added)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-nouser.html (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-nouserpass (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-nouserpass/basic-auth-nouserpass.php (added)
• LayoutTests/platform/gtk/Skipped (modified) (1 diff)
• LayoutTests/platform/mac-leopard/http/tests/xmlhttprequest (added)
• LayoutTests/platform/mac-leopard/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt (added)
• LayoutTests/platform/mac-snowleopard/http (added)
• LayoutTests/platform/mac-snowleopard/http/tests (added)
• LayoutTests/platform/mac-snowleopard/http/tests/xmlhttprequest (added)
• LayoutTests/platform/mac-snowleopard/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt (added)
• LayoutTests/platform/mac-tiger/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt (added)
• LayoutTests/platform/qt/Skipped (modified) (1 diff)
• WebCore/ChangeLog (modified) (1 diff)
• WebCore/platform/network/qt/ResourceHandleQt.cpp (modified) (2 diffs)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2010-12-23  Jan Erik Hanssen  <jhanssen@sencha.com>
+
+        Reviewed by Adam Barth.
+
+        [Qt] User name/password stripped from URLs
+        https://bugs.webkit.org/show_bug.cgi?id=36232
+
+        Test authentication cases where a username but no password and
+        no username but a password is present.
+
+        * http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
+        * http/tests/xmlhttprequest/basic-auth-nopassword.html: Added.
+        * http/tests/xmlhttprequest/basic-auth-nouser-expected.txt: Added.
+        * http/tests/xmlhttprequest/basic-auth-nouser.html: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-nouserpass/basic-auth-nouserpass.php: Added.
+        * platform/gtk/Skipped:
+        * platform/mac-leopard/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
+        * platform/mac-snowleopard/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
+        * platform/mac-tiger/http/tests/xmlhttprequest/basic-auth-nopassword-expected.txt: Added.
+        * platform/qt/Skipped:
+
 2010-12-23  Ryosuke Niwa  <rniwa@webkit.org>
 

trunk/LayoutTests/platform/gtk/Skipped

@@ -5586 +5586 @@
 # https://bugs.webkit.org/show_bug.cgi?id=51380
 http/tests/inspector/console-websocket-error.html
+
+# Passing just a username or just a password to
+# layoutTestController.queueLoad() does not work
+http/tests/xmlhttprequest/basic-auth-nouser.html
+http/tests/xmlhttprequest/basic-auth-password.html

trunk/LayoutTests/platform/qt/Skipped

@@ -275 +275 @@
 editing/inserting/5994480-2.html
 editing/inserting/insert-bg-font.html
+
+# http://bugreports.qt.nokia.com/browse/QTBUG-15566
+http/tests/xmlhttprequest/basic-auth-nouser.html
 
 # =========================================================================== #

trunk/WebCore/ChangeLog

@@ +1 @@
+2010-12-23  Jan Erik Hanssen  <jhanssen@sencha.com>
+
+        Reviewed by Adam Barth.
+
+        [Qt] User name/password stripped from URLs
+        https://bugs.webkit.org/show_bug.cgi?id=36232
+
+        If a username but no password or no username but a password is present
+        in a URL, QtWebKit won't send any authentication information down to Qt
+        as it should.
+
+        Tests: http/tests/xmlhttprequest/basic-auth-nopassword.html
+               http/tests/xmlhttprequest/basic-auth-nouser.html
+
+        * platform/network/qt/ResourceHandleQt.cpp:
+        (WebCore::ResourceHandle::start):
+        (WebCore::ResourceHandle::loadResourceSynchronously):
+
 2010-12-23  Ryosuke Niwa  <rniwa@webkit.org>
 

trunk/WebCore/platform/network/qt/ResourceHandleQt.cpp

@@ -125 +125 @@
         return false;
 
-    if (!(d->m_user.isEmpty() || d->m_pass.isEmpty())) {
+    if (!d->m_user.isEmpty() || !d->m_pass.isEmpty()) {
         // If credentials were specified for this request, add them to the url,
         // so that they will be passed to QNetworkRequest.
@@ -187 +187 @@
 
     ResourceHandleInternal* d = handle->getInternal();
-    if (!(d->m_user.isEmpty() || d->m_pass.isEmpty())) {
+    if (!d->m_user.isEmpty() || !d->m_pass.isEmpty()) {
         // If credentials were specified for this request, add them to the url,
         // so that they will be passed to QNetworkRequest.