Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: P2: Important
Fix Version/s: None
Affects Version/s: 5.15.1
Component/s: WebEngine
Labels:
None

Commits:
291982fed7cda16c19c23b2917493ab2bee86ba7 (qt/qtwebengine-chromium/90-based)

Description

When opening http://tour.golang.org in e.g. simplebrowser, the website is almost empty, with various errors logged in the JS console:

When doing the same in Chromium, the site displays properly - note, however, that Chromium loads https://tour.golang.org even if the HTTP variant is opened explicitly.

What seems to happen here is that the HTTP version of the page sends a Strict-Transport-Security: max-age=31536000; preload header while still serving (broken) content via HTTP - the header causes Chromium to automatically redirect to HTTPS:

(Alternatively, this might actually happen because tour.golang.org is on the HSTS preload list which is not used by QtWebEngine?)

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

image-2020-10-29-22-42-41-542.png
19 kB
29 Oct '20 21:43
image-2020-10-29-22-44-24-696.png
133 kB
29 Oct '20 21:44

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

For Gerrit Dashboard: QTBUG-88036
#	Subject	Branch	Project	Status	CR	V
348555,1	Use Chrome HSTS	88-based	qt/qtwebengine-chromium	Status: ABANDONED	0	0
359332,2	Use Chrome HSTS	90-based	qt/qtwebengine-chromium	Status: MERGED	+2	0

Activity

People

Assignee:: Qt WebEngine Team

Reporter:: Florian Bruhin

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 29 Oct '20 21:44

Updated:: 20 Jul '21 16:09

Resolved:: 20 Jul '21 16:09

Gerrit Reviews

There are no open Gerrit changes

Show There are 2 closed Gerrit changes

Hide There are 2 closed Gerrit changes

Use Chrome HSTS: Gerrit Review:

Use Chrome HSTS: Gerrit Review: