Title: [183290] trunk/LayoutTests
- Revision
- 183290
- Author
- beid...@apple.com
- Date
- 2015-04-24 16:11:07 -0700 (Fri, 24 Apr 2015)
Log Message
Handling additional review feedback after http://trac.webkit.org/changeset/183280
https://bugs.webkit.org/show_bug.cgi?id=144157.
Suggested by, implicitly reviewed by, and explicitly rubber-stamped by Alexey Proskuryakov.
* http/tests/security/cors-post-redirect-303-expected.txt: Added.
* http/tests/security/cors-post-redirect-303.html: Added.
* http/tests/security/resources/cors-post-redirect-target.php:
Modified Paths
Added Paths
Diff
Modified: trunk/LayoutTests/ChangeLog (183289 => 183290)
--- trunk/LayoutTests/ChangeLog 2015-04-24 23:04:48 UTC (rev 183289)
+++ trunk/LayoutTests/ChangeLog 2015-04-24 23:11:07 UTC (rev 183290)
@@ -51,6 +51,17 @@
2015-04-24 Brady Eidson <beid...@apple.com>
+ Handling additional review feedback after http://trac.webkit.org/changeset/183280
+ https://bugs.webkit.org/show_bug.cgi?id=144157.
+
+ Suggested by, implicitly reviewed by, and explicitly rubber-stamped by Alexey Proskuryakov.
+
+ * http/tests/security/cors-post-redirect-303-expected.txt: Added.
+ * http/tests/security/cors-post-redirect-303.html: Added.
+ * http/tests/security/resources/cors-post-redirect-target.php:
+
+2015-04-24 Brady Eidson <beid...@apple.com>
+
Origin header is preserved on cross-origin redirects.
https://bugs.webkit.org/show_bug.cgi?id=144157.
Added: trunk/LayoutTests/http/tests/security/cors-post-redirect-303-expected.txt (0 => 183290)
--- trunk/LayoutTests/http/tests/security/cors-post-redirect-303-expected.txt (rev 0)
+++ trunk/LayoutTests/http/tests/security/cors-post-redirect-303-expected.txt 2015-04-24 23:11:07 UTC (rev 183290)
@@ -0,0 +1 @@
+There was no origin header
Added: trunk/LayoutTests/http/tests/security/cors-post-redirect-303.html (0 => 183290)
--- trunk/LayoutTests/http/tests/security/cors-post-redirect-303.html (rev 0)
+++ trunk/LayoutTests/http/tests/security/cors-post-redirect-303.html 2015-04-24 23:11:07 UTC (rev 183290)
@@ -0,0 +1,24 @@
+<head>
+<script>
+if (window.testRunner) {
+ testRunner.waitUntilDone();
+ testRunner.dumpAsText();
+}
+</script>
+</head>
+<body>
+
+This test is designed to work only when loaded from http://127.0.0.1:8000
+
+<form id='testForm' method='POST'>
+<input id='redircode' type='hidden' name='redircode' value='302'>
+</form>
+
+<script>
+
+var form = document.getElementById('testForm');
+form.action = ""
+form.submit();
+
+</script>
+</body>
Modified: trunk/LayoutTests/http/tests/security/resources/cors-post-redirect-target.php (183289 => 183290)
--- trunk/LayoutTests/http/tests/security/resources/cors-post-redirect-target.php 2015-04-24 23:04:48 UTC (rev 183289)
+++ trunk/LayoutTests/http/tests/security/resources/cors-post-redirect-target.php 2015-04-24 23:11:07 UTC (rev 183290)
@@ -1,10 +1,11 @@
<?php
+header("Cache-Control: no-store");
+
$sawOrigin = false;
-foreach (getallheaders() as $name => $value) {
- if (strtolower($name) == "origin") {
- echo "Origin header value: $value";
- $sawOrigin = true;
- }
+$originHeader = $_SERVER['HTTP_ORIGIN'];
+if ($originHeader) {
+ echo "Origin header value: $originHeader";
+ $sawOrigin = true;
}
if (!$sawOrigin)
_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes
