Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: P2: Important
Fix Version/s: 4.7.0
Affects Version/s: 4.6.2
Component/s: Network
Labels:
None

Commits:
483fdd017d9998c6d7f4a035ca615e15fbc97e6a

Description

Secure Cookies should only be sent over secure connections.

QtWebKit currently fails the following test:

LayoutTests/http/tests/xmlhttprequest/cookies.html

This is because QNetworkCookieJar::cookiesForUrl returns secure
cookies even when the connection is not secure.

A 'secure' cookie is set by response headers from a http server as follows:

'Set-Cookie: cookie-name=value; secure'

Correct QNetworkCookieJar::cookiesForUrl to ignore secure cookies when the
url in the request is not 'https://'.

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

0001-Secure-Cookies-should-only-be-sent-over-secure-conne.patch
2 kB
05 Apr '10 17:49

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Peter Hartmann (closed Nokia identity) (Inactive)

Reporter:: Robert Hogan

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 05 Apr '10 17:49

Updated:: 03 May '10 10:50

Resolved:: 28 Apr '10 14:33

Gerrit Reviews

There are no open Gerrit changes