Please sign in to comment.
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Consider exposing or hiding knowledge of a redirect from clients of W…
…ebCoreNSURLSession https://bugs.webkit.org/show_bug.cgi?id=156722 <rdar://problem/25780035> Reviewed by Alex Christensen. Source/WebCore: Fixes tests: http/tests/security/contentSecurityPolicy/audio-redirect-allowed2.html http/tests/security/contentSecurityPolicy/video-redirect-allowed2.html When receieving a NSURLResponse containing a redirected URL, AVFoundadtion will use the URL in the response for subsequent requests. This violates the HTTP specification if the redirect was temporary, and it also breaks two CSP tests by bypassing the redirect step for subsequent requests. Work around this behavior in AVFoundation by recreating the NSURLResponse with the original request URL in the case of a temporary redirect. * platform/network/cocoa/WebCoreNSURLSession.mm: (-[WebCoreNSURLSessionDataTask resource:receivedResponse:]): (-[WebCoreNSURLSessionDataTask resource:receivedRedirect:request:]): LayoutTests: Un-skip http/tests/security/contentSecurityPolicy/audio-redirect-allowed2.html & http/tests/security/contentSecurityPolicy/video-redirect-allowed2.html. * platform/mac/TestExpectations: Canonical link: https://commits.webkit.org/177222@main git-svn-id: https://svn.webkit.org/repository/webkit/trunk@202466 268f45cc-cd09-0410-ab3c-d52691b4dbfc
- Loading branch information
Showing with 54 additions and 4 deletions.