Closed Bug 71766 Opened 23 years ago Closed 23 years ago

target attribute not used in frames in http URLs

Categories

(Core :: Layout: Images, Video, and HTML Frames, defect)

Product:
Core
Component:
Layout: Images, Video, and HTML Frames
Platform:
x86
Windows NT
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
VERIFIED DUPLICATE of bug 13871

People

(Reporter: hjtoi-bugzilla, Assigned: pollmann)

References

(
URL
)

Details

The testcase in the URL has a frameset with two frames. To reproduce the bug:

1. Load URL.
2. Click "i.html" link in the left frame.

Expected results: i.html should replace the contents of the right hand frame.

What happens: i.html is opened in a new window.

The bizarre thing is that if you save the test files to your local drive,
everything works as expected.

I found this while trying to verify bug 57190. When the testcase in this bug
works you should also add a comment of that in 57190.
This is most likely a security issue -- frames from one site are not allowed to
write into frames from another site (or change their locations).

If both frames come from the same domain, there should be no problems.
Yeah, seems like a security issue. I placed all of the files on the same http
server and they work just fine: http://blueviper/heikki/paint.html

I do not know enough about the security policies to say if this is the desired
behaviour or if this is a bug.
Yes, this is the desired behaviour.  See bug 13871, which instituted this policy.

*** This bug has been marked as a duplicate of 13871 ***
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → DUPLICATE
QA Contact update
QA Contact: petersen → amar
 The attached testcase works fine, i.html loads in the sideframe instead of 
opening in a new window. Verified on WIN2K. Build ID: 2002012403
Status: RESOLVED → VERIFIED
Product: Core → Core Graveyard
Component: Layout: HTML Frames → Layout: Images
Product: Core Graveyard → Core
You need to log in before you can comment on or make changes to this bug.