View Source shows source code of login page instead of current webpage on local django server
Categories
(Core :: Privacy: Anti-Tracking, defect)
Tracking
()
Tracking | Status | |
---|---|---|
firefox-esr68 | --- | unaffected |
firefox-esr78 | --- | unaffected |
firefox77 | --- | unaffected |
firefox78 | --- | unaffected |
firefox79 | - | disabled |
firefox80 | + | fixed |
People
(Reporter: bullionareboy, Assigned: xeonchen)
References
(Blocks 1 open bug, Regressed 1 open bug)
Details
(Keywords: regression)
Attachments
(1 file, 1 obsolete file)
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:80.0) Gecko/20100101 Firefox/80.0
Steps to reproduce:
Start and run local django server. Login with credentials.
Right click on page and use 'View Source' option
Actual results:
View Source shows the source code of the login page instead of the page where the user clicked.
Expected results:
Show the source code of the current webpage instead of the source code of the login page.
moz-regression found that - Bug 1644111 : Remove isEnabled() check - started this problem.
The good and bad dates are = 2020-06-23 and 2020-06-24
Comment 1•4 years ago
|
||
Comment 2•4 years ago
|
||
Could be a devtools problem but I'm not sure. Sending to the JS team to have a first look as they introduced the regression.
Updated•4 years ago
|
maybeResizeNursery() may update capacity_ so we still need the isEnabled() check.
Comment 4•4 years ago
|
||
jonco: Triaging as REO for 79 - can you set a priority and severity for this bug?
Comment 5•4 years ago
|
||
(In reply to bull500 from comment #0)
moz-regression found that - Bug 1644111 : Remove isEnabled() check - started this problem.
It's really unlikely that this change could have produced this symptom. Is it possible that another change around the same time could have done this?
I noticed bug 1628486 landed just before this. Could that have caused this?
(In reply to bull500 from comment #0)
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:80.0) Gecko/20100101 Firefox/80.0
Steps to reproduce:
Start and run local django server. Login with credentials.
Right click on page and use 'View Source' optionActual results:
View Source shows the source code of the login page instead of the page where the user clicked.
Expected results:
Show the source code of the current webpage instead of the source code of the login page.
Can you show me the login url? And upload the screenshot of the expected webpage and actual webpage shown?
Or have you changed any pref?
So I tried https://developer.mozilla.org/en-US/docs/Learn/Server-side/Django/Admin_site
with the login url 127.0.0.1:8000/admin/
after login, right click to view page source
I got the correct viewsource and cannot reproduce your problem.
(In reply to Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh] from comment #6)
(In reply to bull500 from comment #0)
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:80.0) Gecko/20100101 Firefox/80.0
Steps to reproduce:
Start and run local django server. Login with credentials.
Right click on page and use 'View Source' optionActual results:
View Source shows the source code of the login page instead of the page where the user clicked.
Expected results:
Show the source code of the current webpage instead of the source code of the login page.
Can you show me the login url? And upload the screenshot of the expected webpage and actual webpage shown?
Or have you changed any pref?So I tried https://developer.mozilla.org/en-US/docs/Learn/Server-side/Django/Admin_site
with the login url 127.0.0.1:8000/admin/
after login, right click to view page source
I got the correct viewsource and cannot reproduce your problem.
i've uploaded a Django site project here - https://www.mediafire.com/file/ux1olqftc2xapig/mysite.zip/file
You can use it to test it out
You'll have to do the steps of :
python manage.py makemigrations
python manage.py migrate
python manage.py createsuperuser
python manage.py runserver
once all that is done login via 'sign in' button on the home page - 127.0.0.1:8000
you can check the difference in 'view source' from the following links after sign in:
http://127.0.0.1:8000/list - normal
http://127.0.0.1:8000/create - problem
Assignee | ||
Comment 8•4 years ago
|
||
(In reply to Jon Coppeard (:jonco) from comment #5)
(In reply to bull500 from comment #0)
moz-regression found that - Bug 1644111 : Remove isEnabled() check - started this problem.
It's really unlikely that this change could have produced this symptom. Is it possible that another change around the same time could have done this?
I noticed bug 1628486 landed just before this. Could that have caused this?
Probably not, but it's easy to check.
Could you help to check this?
- open about:config
- set
network.cookie.cookieBehavior
from 5 to 4
And see if this affects the result?
(In reply to Gary Chen [:xeonchen] from comment #8)
(In reply to Jon Coppeard (:jonco) from comment #5)
(In reply to bull500 from comment #0)
moz-regression found that - Bug 1644111 : Remove isEnabled() check - started this problem.
It's really unlikely that this change could have produced this symptom. Is it possible that another change around the same time could have done this?
I noticed bug 1628486 landed just before this. Could that have caused this?
Probably not, but it's easy to check.
Could you help to check this?
- open about:config
- set
network.cookie.cookieBehavior
from 5 to 4And see if this affects the result?
Yes, it did!
It shows the correct source code.
Assignee | ||
Comment 10•4 years ago
|
||
(In reply to bull500 from comment #9)
Yes, it did!
It shows the correct source code.
Thank you! This might be a breakage of dFPI.
Updated•4 years ago
|
Assignee | ||
Comment 11•4 years ago
|
||
(In reply to bull500 from comment #7)
you can check the difference in 'view source' from the following links after sign in:
http://127.0.0.1:8000/list - normal
http://127.0.0.1:8000/create - problem
Just tested with the given site and it is reproducible, thank you!
The issue here is because the view-source tab is partitioned by "http://127.0.0.1:8000", and therefore a page required login is not accessible.
It explains why those two pages show different results.
Assignee | ||
Comment 12•4 years ago
|
||
Updated•4 years ago
|
Comment 13•4 years ago
|
||
Pushed by xeonchen@gmail.com: https://hg.mozilla.org/integration/autoland/rev/346a9a9d3b14 do not partition view-source: pages r=baku
Comment 14•4 years ago
|
||
bugherder |
Reporter | ||
Comment 15•4 years ago
|
||
Thank you for fixing this! :D
Assignee | ||
Comment 17•4 years ago
|
||
(In reply to Ryan VanderMeulen [:RyanVM] from comment #16)
Is this ready for a Beta approval request?
This only affects when network.cookie.cookieBehavior=5
, and we only show UI to select this value in Nightly channel.
Should we uplift it? Is so, I think it's ready.
Comment 18•4 years ago
|
||
If this isn't enabled by default on Beta/Release, I think we're fine letting it ride the 80 train. Thanks!
Updated•4 years ago
|
Description
•