Closed Bug 1802086 Opened 1 year ago Closed 1 year ago

Remove authorization from fetch on cross origin redirect

Categories

(Core :: DOM: Networking, enhancement, P2)

enhancement

Tracking

()

RESOLVED FIXED
111 Branch
Tracking Status
firefox111 --- fixed

People

(Reporter: valentin, Assigned: smayya)

References

(Blocks 1 open bug, )

Details

(Keywords: dev-doc-complete, Whiteboard: [necko-triaged][necko-priority-queue], [wptsync upstream])

Attachments

(1 file)

I think we can check for a cross origin redirect in FetchDriver::AsyncOnChannelRedirect and clear the autorization there.

Whiteboard: [necko-triaged] → [necko-triaged][necko-priority-review]
Whiteboard: [necko-triaged][necko-priority-review] → [necko-triaged][necko-priority-queue]
Attachment #9306804 - Attachment description: WIP: Bug 1802086 - remove auth header from redirected cross-origin requests → WIP: Bug 1802086 - remove auth header from redirected cross-origin requests.
Attachment #9306804 - Attachment description: WIP: Bug 1802086 - remove auth header from redirected cross-origin requests. → Bug 1802086 - remove auth header from redirected cross-origin requests. r=#necko
Pushed by archaeopteryx@coole-files.de:
https://hg.mozilla.org/integration/autoland/rev/c1a19f563004
remove auth header from redirected cross-origin requests. r=necko-reviewers,smaug,valentin
Created web-platform-tests PR https://github.com/web-platform-tests/wpt/pull/38014 for changes under testing/web-platform/tests
Whiteboard: [necko-triaged][necko-priority-queue] → [necko-triaged][necko-priority-queue], [wptsync upstream]
Status: NEW → RESOLVED
Closed: 1 year ago
Resolution: --- → FIXED
Target Milestone: --- → 111 Branch
Upstream PR merged by moz-wptsync-bot
Regressions: 1817980

MDN docs work for this done in https://github.com/mdn/content/issues/22533 - pretty much complete.

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: