Timing-Allow-Origin works with 302 #27377
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
youennf
added
the
Page Loading
Collaborator
|
EWS run on previous version of this PR (hash 8d2b674) Details
|
youennf
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
8d2b674 to
bb2820a
Compare
Collaborator
|
EWS run on previous version of this PR (hash bb2820a) Details |
youennf
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
bb2820a to
7a82f69
Compare
Collaborator
|
EWS run on previous version of this PR (hash 7a82f69) Details |
webkit-ews-buildbot
added
the
merging-blocked
youennf
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
7a82f69 to
f7cf08f
Compare
Collaborator
|
EWS run on previous version of this PR (hash f7cf08f) Details |
youennf
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
f7cf08f to
c917638
Compare
Collaborator
|
EWS run on previous version of this PR (hash c917638) Details |
youennf
removed
the
merging-blocked
webkit-ews-buildbot
added
the
merging-blocked
youennf
removed
the
merging-blocked
achristensen07
approved these changes
Apr 19, 2024
Collaborator
|
Failed to access https://raw.githubusercontent.com/WebKit/WebKit/main/metadata/contributors.json, blocking PR #27377 |
webkit-commit-queue
added
merging-blocked
youennf
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
c917638 to
a33cba1
Compare
Collaborator
|
EWS run on previous version of this PR (hash a33cba1) Details |
youennf
added
merge-queue
youennf
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
a33cba1 to
f3fbc74
Compare
Collaborator
|
EWS run on current version of this PR (hash f3fbc74) Details |
youennf
added
merge-queue
webkit-commit-queue
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
f3fbc74 to
c8a9eee
Compare
https://bugs.webkit.org/show_bug.cgi?id=272682 rdar://126531139 Reviewed by Alex Christensen. We move the TAO check from platform specific NetworkDataTask implementations to NetworkLoadChecker. This allows us to implement the algorithm as defined in fetch, including checking the response tainting. This aligns behavior with Chrome and Firefox. For top level navigation, we were using the source origin, but we should use the top origin for top level navigations, as top level navigations are same origin. * LayoutTests/http/wpt/resource-timing/resources/rt-utilities.sub.js: (addACAOHeader): * LayoutTests/http/wpt/resource-timing/rt-cors-2-expected.txt: Added. * LayoutTests/http/wpt/resource-timing/rt-cors-2.html: Added. * LayoutTests/http/wpt/resource-timing/rt-cors-2.js: Added. (assertAlways): (assertRedirectWithDisallowedTimingData): (assertDisallowedTimingData): (promise_test): * Source/WebKit/NetworkProcess/NetworkDataTask.h: (WebKit::NetworkDataTask::setTimingAllowFailedFlag): * Source/WebKit/NetworkProcess/NetworkLoad.cpp: (WebKit::NetworkLoad::setTimingAllowFailedFlag): * Source/WebKit/NetworkProcess/NetworkLoad.h: * Source/WebKit/NetworkProcess/NetworkLoadChecker.cpp: (WebKit::NetworkLoadChecker::validateResponse): (WebKit::NetworkLoadChecker::checkTAO): * Source/WebKit/NetworkProcess/NetworkLoadChecker.h: (WebKit::NetworkLoadChecker::timingAllowFailedFlag const): (WebKit::NetworkLoadChecker::isSameOriginRequest const): * Source/WebKit/NetworkProcess/NetworkResourceLoader.cpp: (WebKit::NetworkResourceLoader::didReceiveResponse): (WebKit::NetworkResourceLoader::didFinishLoading): (WebKit::NetworkResourceLoader::willSendRedirectedRequestInternal): * Source/WebKit/NetworkProcess/cocoa/NetworkDataTaskCocoa.h: * Source/WebKit/NetworkProcess/cocoa/NetworkDataTaskCocoa.mm: (WebKit::NetworkDataTaskCocoa::setTimingAllowFailedFlag): (WebKit::NetworkDataTaskCocoa::checkTAO): Deleted. * Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.mm: (-[WKNetworkSessionDelegate URLSession:task:willPerformHTTPRedirection:newRequest:completionHandler:]): (-[WKNetworkSessionDelegate URLSession:dataTask:didReceiveResponse:completionHandler:]): * Source/WebKit/NetworkProcess/curl/NetworkDataTaskCurl.cpp: (WebKit::NetworkDataTaskCurl::updateNetworkLoadMetrics): (WebKit::NetworkDataTaskCurl::setTimingAllowFailedFlag): * Source/WebKit/NetworkProcess/curl/NetworkDataTaskCurl.h: * Source/WebKit/NetworkProcess/soup/NetworkDataTaskSoup.cpp: (WebKit::NetworkDataTaskSoup::didSendRequest): (WebKit::NetworkDataTaskSoup::setTimingAllowFailedFlag): * Source/WebKit/NetworkProcess/soup/NetworkDataTaskSoup.h: Canonical link: https://commits.webkit.org/278448@main
webkit-commit-queue
force-pushed
the
eng/Timing-Allow-Origin-works-with-302
branch
from
c8a9eee to
6a2c5a3
Compare
Collaborator
|
Committed 278448@main (6a2c5a3): https://commits.webkit.org/278448@main Reviewed commits have been landed. Closing PR #27377 and removing active labels. |
webkit-commit-queue
removed
the
merge-queue
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
6a2c5a3
f3fbc74
🧪 wpe-wk2🧪 api-ios